CVE-2007-3421

Name of the Vulnerable Software and Affected Versions web-app.org WebAPP versions prior to 0.9.9.7

Description The issue affects various capabilities in web-app.org WebAPP, including login, admin profile edit, reminder, edit profile, profile view, gallery view, gallery comment, and gallery feedback. These capabilities do not verify the presence of users in memberlist.dat, which may have unknown impact and allows for remote attack vectors.

Recommendations For versions prior to 0.9.9.7, update to version 0.9.9.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the affected capabilities until a patch is available.