CVE-2008-6790 Information

Description

The admin module in MindDezign Photo Gallery 2.2 allows remote attackers to add administrative users and gain privileges via a modified username parameter in an edit account action to index.php.

Reference

http://www.securityfocus.com/bid/31897 https://exchange.xforce.ibmcloud.com/vulnerabilities/46078 https://www.exploit-db.com/exploits/6820