MidnightBSD

Advisories for nukedit

CVE-2006-2737 HIGH

utilities/register.asp in Nukedit 4.9.6 and earlier allows remote attackers to create new users as part of arbitrary groups, including the administrative group, via a modified groupid parameter when creating a user via the addDB action.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
nukedit nukedit 4.9.2
nukedit nukedit *
nukedit nukedit 4.9.3
nukedit nukedit 4.9.1
nukedit nukedit 4.9.0