CVE-2008-6665 Information

Description

change.php in Ananta CMS 1.0b5 with magic_quotes_gpc disabled allows remote attackers to gain administrator privileges via a crafted email parameter possibly related to code injection.

Reference

http://www.securityfocus.com/bid/29752 https://exchange.xforce.ibmcloud.com/vulnerabilities/43119 https://www.exploit-db.com/exploits/5824