Phpcoupon : Security Vulnerabilities, CVEs,
user.php in the Billing Control Panel in phpCoupon allows remote authenticated users to obtain Premium Member status, and possibly acquire free coupons, via a modified URL containing a certain billing parameter and REQ=auth, status=success, and custom=upgrade substrings, possibly related to PayPal transactions.
Max CVSS
4.0
EPSS Score
0.92%
Published
2007-08-03
Updated
2018-10-15
1 vulnerabilities found