2 matches found
CVE-2004-2715
CVE-2004-2715 affects PHPMyChat 0.14.5 where edituser.php3 allows remote attackers to bypass authentication and gain administrative privileges by setting the do_not_login parameter to false. The root cause is a parameter-based authentication bypass in the admin workflow, enabling escalation of pr...
CVE-2004-2715
edituser.php3 in PHPMyChat 0.14.5 allow remote attackers to bypass authentication and gain administrative privileges by setting the donotlogin parameter to false...