CVE-2001-0995 Information

Description

PHProjekt before 2.4a allows remote attackers to perform actions as other PHProjekt users by modifying the ID number in an HTTP request to PHProjekt CGI programs.

Reference

http://www.phprojekt.com/ChangeLog http://www.securityfocus.com/archive/1/210349 http://www.securityfocus.com/bid/3239 https://exchange.xforce.ibmcloud.com/vulnerabilities/7035