CVE-2007-2860

2007-05-2419:00:00

mitre

www.cve.org

6.5 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.3%

JSON

user.php in BoastMachine 3.0 platinum allows remote authenticated users to gain privileges via a modified id parameter, as demonstrated by an edit_post action.

References

osvdb.org/41027

securityreason.com/securityalert/2736

www.securityfocus.com/archive/1/469226/100/0/threaded

www.securityfocus.com/bid/24096

exchange.xforce.ibmcloud.com/vulnerabilities/34462