CVE-2007-2715

Snaps! Gallery 1.4.4 - Unauthenticated Arbitrary Username and Password Change via Admin/users.php

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2715. PoCs published by Dj7xpl.

AI-analyzed exploit summary This exploit targets a vulnerability in Snaps! Gallery 1.4.4, allowing remote attackers to change user passwords without authentication by sending a crafted HTTP POST request. The exploit constructs a multipart/form-data request to modify user credentials via the Admin/users.php endpoint.

Description

Admin/users.php in Snaps! Gallery 1.4.4 allows remote attackers to change arbitrary usernames and passwords via the (1) username, or the (2) password and password2 parameters in an edit action.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dj7xpl · phpwebappsphp

https://www.exploit-db.com/exploits/3900

View Code ZIP pw:eip

This exploit targets a vulnerability in Snaps! Gallery 1.4.4, allowing remote attackers to change user passwords without authentication by sending a crafted HTTP POST request. The exploit constructs a multipart/form-data request to modify user credentials via the Admin/users.php endpoint.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Snaps! Gallery 1.4.4

No auth needed

Prerequisites: Network access to the target server · Knowledge of the target path and user ID

MITRE ATT&CK