2009-05-07 23:00:00
mitre
PUBLISHED
connection.php in FlashChat 5.0.8 allows remote attackers to bypass the role filter mechanism and gain administrative privileges by setting the s parameter to "7."