CVE-2006-4954 | Neosys Neon WebMail up to 5.7 in_id privileges management (EDB-28609 / XFDB-29089)
A vulnerability was found in Neosys Neon WebMail up to 5.7. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument in_id leads to improper privilege management.
This vulnerability is known as CVE-2006-4954. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.