CVE-2007-5988
CVE-2007-5988 affects BtiTracker 1.4.4. The issue lies in blocks/shoutbox_block.php, where user accounts are not verified, enabling remote attackers to post shoutbox entries as arbitrary users by modifying the nick field. Impact: allows impersonation within the shoutbox; the documentation does no...