CVE-2008-7181 Information

Description

Butterfly Organizer 2.0.0 allows remote attackers to (1) delete arbitrary categories via a modified tablehere parameter to category-delete.php with the is_js_confirmed parameter set to 1 or (2) delete arbitrary accounts via the mytable parameter to delete.php.

Reference

http://www.securityfocus.com/bid/29703 https://exchange.xforce.ibmcloud.com/vulnerabilities/43067 https://www.exploit-db.com/exploits/5800