The saveProfile function in PhpSlash 0.8.0 allows remote malicious users to modify arbitrary profiles and gain privileges by modifying the author_id parameter.
phpslash phpslash 0.8.0