Описание
main.php in Crux Gallery 1.32 and earlier allows remote attackers to gain administrative access by setting the name parameter to "users," as demonstrated via index.php.
main.php in Crux Gallery 1.32 and earlier allows remote attackers to gain administrative access by setting the name parameter to "users," as demonstrated via index.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-4484
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45443
- https://www.exploit-db.com/exploits/6586
- http://secunia.com/advisories/32058
- http://securityreason.com/securityalert/4365
- http://www.attrition.org/pipermail/vim/2008-October/002083.html
- http://www.securityfocus.com/archive/1/496763/100/0/threaded
- http://www.securityfocus.com/bid/31430
EPSS
Процентиль: 93%
0.09555
Низкий
CVE ID
Связанные уязвимости
nvd
больше 17 лет назад
main.php in Crux Gallery 1.32 and earlier allows remote attackers to gain administrative access by setting the name parameter to "users," as demonstrated via index.php.
EPSS
Процентиль: 93%
0.09555
Низкий