Vulnerabilities > CVE-2007-4260 - Unspecified vulnerability in EZ Photo Sales EZ Photo Sales
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
EZPhotoSales 1.9.3 and earlier has a default "admin" account for galleries, which allows remote attackers to access arbitrary galleries by specifying this username.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://www.airscanner.com/security/07080601_ezphotosales.htm
- http://www.informit.com/guides/content.asp?g=security&seqNum=267
- http://www.informit.com/guides/content.asp?g=security&seqNum=268
- http://securityreason.com/securityalert/2985
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35837
- http://www.securityfocus.com/archive/1/475678/100/0/threaded