7 matches found
EUVD-2006-6804
Malware in sbrugna...
CVE-2006-6821
myprofile.asp in Enthrallweb eNews does not properly validate the MMrecordId parameter during profile updates, which allows remote authenticated users to modify certain profile fields of another account by specifying that account's username in a modified MMrecordId parameter...
CVE-2006-6821
myprofile.asp in Enthrallweb eNews does not properly validate the MMrecordId parameter during profile updates, which allows remote authenticated users to modify certain profile fields of another account by specifying that account's username in a modified MMrecordId parameter...
CVE-2006-6821
The CVE concerns Enthrallweb eNews: myprofile.asp fails to validate MM_recordId during profile updates, allowing remote authenticated users to change certain fields of another account by supplying that account’s username in MM_recordId. No remediation details are provided in the supplied documents.
Enthrallweb eNews 1.0 - Remote User Pass Change
User Id: PASSWORD: FIRST: LAST:...
Enthrallweb eNews 1.0 Remote User Pass Change Exploit
Exploit for unknown platform in category web applications ===================================================== Enthrallweb eNews 1.0 Remote User Pass Change Exploit ===================================================== User Id: PASSWORD: FIRST: LAST:/fo...
Enthrallweb eNews 1.0 Remote User Pass Change Exploit
No description provided by source. form action="target/classifieds/myprofile.asp" method="POST" name="form2" User Id: input type="text" name="MMrecordId" value="1" p/p table align="center" cellpadding="1" cellspacing="1" tr valign="baseline" td align="right" nowrap class="title"strongfont...