VYPR
Unrated severityNVD Advisory· Published Feb 16, 2006· Updated Jun 16, 2026

CVE-2006-0724

CVE-2006-0724

Description

profile.php in Reamday Enterprises Magic News Lite 1.2.3, when register_globals is enabled, allows remote attackers to modify program behavior, potentially bypassing authentication controls, via modified (1) action, (2) passwd, (3) admin_password, (4) new_passwd, and (5) confirm_passwd variables, which are not initialized.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:reamday_enterprises:magic_news_lite:1.2.3:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:reamday_enterprises:magic_news_lite:1.2.3:*:*:*:*:*:*:*
    • (no CPE)range: <= 1.2.3

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.