cbcvebase.
CVE-2007-1925
published 2007-04-10

CVE-2007-1925: The borrado function in modules/Your_Account/index.php in Tru-Zone Nuke ET 3.4 before fix 7 does not verify that account deletion requests come from the…

PriorityP427medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EPSS
1.34%
67.8th percentile
The borrado function in modules/Your_Account/index.php in Tru-Zone Nuke ET 3.4 before fix 7 does not verify that account deletion requests come from the account owner, which allows remote authenticated users to delete arbitrary accounts via a modified cookie.

Affected

1 ranges
VendorProductVersion rangeFixed in
tru-zonenukeet<= 3.4
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.