ID Number Manipulation Vulnerability in PHProjekt before 2.4a

ID Number Manipulation Vulnerability in PHProjekt before 2.4a

CVE-2001-0995 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

PHProjekt before 2.4a allows remote attackers to perform actions as other PHProjekt users by modifying the ID number in an HTTP request to PHProjekt CGI programs.

Learn more about our User Device Pen Test.