CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2006-2807

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0490%
EPSS Percentile5.88th
Published2006年6月5日
Last Modified2026年4月16日

Vulnerability Description

ASPwebSoft Speedy Asp Discussion Forum allows remote attackers to change the password of any account via a modified account id and possibly arbitrary values of the name, email, country, password, and passwordre parameters to profileupdate.asp.

Affected Platforms (CPE)

📦
Aspwebsoft

Speedy Asp Discussion Forum

All versions

References & Advisories

🔗 http://securityreason.com/securityalert/1037
🔗 http://www.securityfocus.com/archive/1/435209/100/0/threaded
🔗 http://www.securityfocus.com/bid/18170
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/26811
🔗 http://securityreason.com/securityalert/1037
🔗 http://www.securityfocus.com/archive/1/435209/100/0/threaded
🔗 http://www.securityfocus.com/bid/18170
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/26811

相關漏洞威脅

CVE-2006-078910.0

Certain unspecified Kyocera printers have a default "admin" account with a blank password, which allows remote attackers to access...

CVE-2006-066510.0

Unspecified vulnerability in (1) query_store.php and (2) manage_proj_create.php in Mantis before 1.0.0 has unknown impact and atta...

CVE-2006-075110.0

Multiple unspecified vulnerabilities in the (1) Filesystem in USErspace (FUSE) client and (2) NOOFS daemon in in Network Object Or...

CVE-2006-360110.0

** UNVERIFIABLE ** Unspecified vulnerability in an unspecified DNN Modules module for DotNetNuke (.net nuke) allows remote attack...