Vulnerabilities > CVE-2007-0926 - Unspecified vulnerability in Kvguestbook 1.0Beta

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

kvguestbook

NVD

Published: 2007-02-14

Updated: 2024-11-21

Summary

The dologin function in guestbook.php in KvGuestbook 1.0 Beta allows remote attackers to gain administrative privileges, probably via modified $mysql['pass'] and $gbpass variables.

Vulnerable Configurations

Part	Description	Count
Application	Kvguestbook Kvguestbook Kvguestbook 1.0_Beta	1

References

http://osvdb.org/33710
http://osvdb.org/33710
http://securityreason.com/securityalert/2246
http://securityreason.com/securityalert/2246
http://www.securityfocus.com/archive/1/459799/100/0/threaded
http://www.securityfocus.com/archive/1/459799/100/0/threaded