CVE-2006-6480 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-6480

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

admin/admin_membre/fiche_membre.php in AnnonceScriptHP 2.0 allows remote attackers to obtain sensitive information via the idmembre parameter, which discloses the passwords for arbitrary users.

Affected Software

Name	Vendor	Start Version	End Version
Annoncescripthp	Scriptphp	2.0 (including)	2.0 (including)

References

http://secunia.com/advisories/23318
http://securityreason.com/securityalert/2019
http://www.securityfocus.com/archive/1/453966/100/0/threaded
http://www.securityfocus.com/bid/21514
https://exchange.xforce.ibmcloud.com/vulnerabilities/30805