CVE-2008-2488 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2008-2488

CWE

https://cwe.mitre.org/data/definitions/264.html

admin/userform.php in RoomPHPlanning 1.5 does not require administrative credentials, which allows remote authenticated users to create new admin accounts.

Affected Software

Name	Vendor	Start Version	End Version
Roomphplanning	Beaussier	1.5 (including)	1.5 (including)

References

http://secunia.com/advisories/30376
http://www.securityfocus.com/bid/29377
https://exchange.xforce.ibmcloud.com/vulnerabilities/42629
https://www.exploit-db.com/exploits/5674
http://secunia.com/advisories/30376
http://www.securityfocus.com/bid/29377
https://exchange.xforce.ibmcloud.com/vulnerabilities/42629
https://www.exploit-db.com/exploits/5674