CVE-2006-2422

CVE-2006-2422 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

phpCOIN 1.2.3 and earlier stores messages based upon e-mail addresses, which allows remote authenticated users to read messages for other users by adding the sender's e-mail address as an "additional contact".

Learn more about our Contact.