Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2771

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-2771
Last Modified 07 Mar 2011 09:36:59
Published 02 Jun 2006 06:18:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2771

Summary

admin/radera/tabort.asp in Hogstorps hogstorp guestbook 2.0 does not verify user credentials, which allows remote attackers to delete arbitrary posts via a modified delID parameter.

Vulnerable Systems

Application

  • Hogstorps Hogstorp Guestbook 2.0


References

VUPEN - ADV-2006-2082

BID - 18205

SECUNIA - 20402

MISC - http://colander.altervista.org/advisory/HTGuestBook2.txt

XF - hogstorp-guestbook-redigera2-security-bypass(26979)


Last Updated: 27 May 2016 10:42:46