Remote Code Execution in PhotoPost PHP 5.0 RC3 via adm-photo.php

Remote Code Execution in PhotoPost PHP 5.0 RC3 via adm-photo.php

CVE-2005-0776 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

adm-photo.php in PhotoPost PHP 5.0 RC3 does not properly verify administrative privileges before manipulating photos, which could allow remote attackers to manipulate other users' photos.

Learn more about our User Device Pen Test.