exploitDog

GHSA-gw3f-6rqc-fm2w

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

MyBlog 0.9.8 and earlier allows remote attackers to bypass authentication requirements via the admin cookie parameter to certain admin files, as demonstrated by admin/settings.php.

MyBlog 0.9.8 and earlier allows remote attackers to bypass authentication requirements via the admin cookie parameter to certain admin files, as demonstrated by admin/settings.php.

Ссылки

EPSS

Процентиль: 92%

0.0744

Низкий

CVE ID

Связанные уязвимости

CVE-2007-2081

nvd

почти 19 лет назад

MyBlog 0.9.8 and earlier allows remote attackers to bypass authentication requirements via the admin cookie parameter to certain admin files, as demonstrated by admin/settings.php.

EPSS

Процентиль: 92%

0.0744

Низкий

CVE ID