Reamday Enterprises - Magic Downloads CVE

Filtered by vendor Reamday Enterprises Subscribe

Filtered by product Magic Downloads

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2006-0722	1 Reamday Enterprises	1 Magic Downloads	2023-12-10	2.6 LOW	N/A
settings.php in Reamday Enterprises Magic Downloads 1.1.3, when register_globals is enabled, allows remote attackers to modify program behavior, potentially bypassing authentication controls, via modified (1) action, (2) passwd, (3) admin_password, (4) new_passwd, and (5) confirm_passwd variables, which are not initialized.

Vulnerabilities (CVE)