CVE-2007-5816

CVE-2007-5816 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

dialog.php in CONTENTCustomizer 3.1mp and earlier allows remote attackers to obtain sensitive author credentials by making a request with an editauthor action, then reading the value of the newlocalpassword password input field in the HTML source of the resulting page.

Learn more about our Web Application Penetration Testing UK.