CVE-2007-2775

CVE-2007-2775 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

AlstraSoft Live Support 1.21 sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote attackers to obtain administrative access via a direct request to admin/managesettings.php.

Learn more about our Web App Pen Testing.