Web Wiz Forums 7.7a Privilege Escalation Vulnerability

Web Wiz Forums 7.7a Privilege Escalation Vulnerability

CVE-2004-2733 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:P

Web Wiz Forums 7.7a uses invalid logic to determine user privileges, which allows remote attackers to (1) block arbitrary IP addresses via pop_up_ip_blocking.asp or (2) modify topics via pop_up_topic_admin.asp.

Learn more about our User Device Pen Test.