Vulnerabilities > Cale Dunlap
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-25 | CVE-2008-6524 | Credentials Management vulnerability in Cale Dunlap Openinvoice resetpass.php in openInvoice 0.90 beta and earlier allows remote authenticated users to change the passwords of arbitrary users via a modified uid parameter. | 6.5 |
2009-03-25 | CVE-2008-6523 | Improper Authentication vulnerability in Cale Dunlap Openinvoice 0.90 auth.php in openInvoice 0.90 beta and earlier allows remote attackers to bypass authentication and gain privileges by setting the oiauth cookie. | 7.5 |