Ultraapps : Security Vulnerabilities, CVEs,
UserProfile.cs in Ultraapps Issue Manager before 2.1 allows remote authenticated users to gain administrator privileges by modifying the original (1) p_User_user_id and (2) User_user_id parameters to UserProfile.aspx, then modifying the password field.
Max CVSS
9.0
EPSS Score
0.47%
Published
2005-12-21
Updated
2018-10-19
1 vulnerabilities found