Vulnerabilities > Gianluca Baldo > Phpauction > 1.2

DATE	CVE	VULNERABILITY TITLE	RISK
2002-10-04	CVE-2002-0995	Unspecified vulnerability in Gianluca Baldo PHPauction login.php for PHPAuction allows remote attackers to gain privileges via a direct call to login.php with the action parameter set to "insert," which adds the provided username to the adminUsers table. network low complexity gianluca-baldo	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.