CVE-2008-4167

CVE-2008-4167 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:P

useradmin.php in Easy Photo Gallery (aka Ezphotogallery) 2.1 does not require administrative authentication, which allows remote attackers to (1) add or (2) remove an Administrator account.

Learn more about our Web Application Penetration Testing UK.