CVE-2008-4921

Description

board/admin/reguser.php in Chipmunk CMS 1.3 allows remote attackers to bypass authentication and gain administrator privileges via a direct request. NOTE: some of these details are obtained from third party information.

Affected products

• chipmunk-scripts / chipmunk_cms1.3 – 1.3

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/46259
• MISChttp://securityreason.com/securityalert/4559
• MISChttp://osvdb.org/49494
• VENDOR_ADVISORYhttp://secunia.com/advisories/32476
• EXPLOIThttps://www.exploit-db.com/exploits/6959