Unrated severityNVD Advisory· Published Apr 10, 2007· Updated Jun 16, 2026
CVE-2007-1925
CVE-2007-1925
Description
The borrado function in modules/Your_Account/index.php in Tru-Zone Nuke ET 3.4 before fix 7 does not verify that account deletion requests come from the account owner, which allows remote authenticated users to delete arbitrary accounts via a modified cookie.
Affected products
2Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.