6.7 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.4%
PHProjekt before 2.4a allows remote attackers to perform actions as other PHProjekt users by modifying the ID number in an HTTP request to PHProjekt CGI programs.
www.phprojekt.com/ChangeLog
www.securityfocus.com/archive/1/210349
www.securityfocus.com/bid/3239
exchange.xforce.ibmcloud.com/vulnerabilities/7035