exploitDog

CVE-2001-0001

Опубликовано: 02 июн. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

cookiedecode function in PHP-Nuke 4.4 allows users to bypass authentication and gain access to other user accounts by extracting the authentication information from a cookie.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2001-02/0257.html
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6183
http://archives.neohapsis.com/archives/bugtraq/2001-02/0257.html
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6183

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:francisco_burzi:php-nuke:4.4:*:*:*:*:*:*:*

EPSS

Процентиль: 9%

0.00031

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-xf5w-5cjx-254f

github

почти 4 года назад

cookiedecode function in PHP-Nuke 4.4 allows users to bypass authentication and gain access to other user accounts by extracting the authentication information from a cookie.

EPSS

Процентиль: 9%

0.00031

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other