adm-photo.php in PhotoPost PHP 5.0 RC3 does not properly verify administrative privileges before manipulating photos, which could allow remote malicious users to manipulate other users' photos.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
photopost photopost php pro 5.0_rc3 |