CVE-2006-2422
CVE-2006-2422 · MEDIUM Severity
AV:N/AC:L/AU:N/C:P/I:N/A:N
phpCOIN 1.2.3 and earlier stores messages based upon e-mail addresses, which allows remote authenticated users to read messages for other users by adding the sender's e-mail address as an "additional contact".
Learn more about our Contact.