Web Wiz Forums 7.7a uses invalid logic to determine user privileges, which allows remote malicious users to (1) block arbitrary IP addresses via pop_up_ip_blocking.asp or (2) modify topics via pop_up_topic_admin.asp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
webwiz web wiz forums 7.7 |