Unrated severityNVD Advisory· Published May 22, 2006· Updated Jun 16, 2026
CVE-2006-2527
CVE-2006-2527
Description
Admin/admin.php in phpBazar 2.1.0 and earlier allows remote attackers to bypass the authentication process and gain unauthorized access to the administrative section by setting the action parameter to edit_member and the value parameter to 1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:smartisoft:phpbazar:2.1.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.