Unauthenticated Access and Data Manipulation in PHProjekt 2.0 through 3.1

Unauthenticated Access and Data Manipulation in PHProjekt 2.0 through 3.1

CVE-2002-1758 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

PHProjekt 2.0 through 3.1 allows remote attackers to view or modify data via requests to certain scripts that do not verify if the user is logged in.

Learn more about our User Device Pen Test.