exploitDog

CVE-2001-1367

Опубликовано: 19 июл. 2001

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

The checkAccess function in PHPSlice 0.1.4, and all other versions between 0.1.1 and 0.1.6, does not properly verify the administrative access level, which could allow remote attackers to gain privileges.

Ссылки

http://archives.neohapsis.com/archives/vulnwatch/2001-q3/0005.html
Vendor Advisory
http://phpslice.org/comments.php?aid=1031&
URL Repurposed
https://exchange.xforce.ibmcloud.com/vulnerabilities/9649
http://archives.neohapsis.com/archives/vulnwatch/2001-q3/0005.html
Vendor Advisory
http://phpslice.org/comments.php?aid=1031&
URL Repurposed
https://exchange.xforce.ibmcloud.com/vulnerabilities/9649

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpslice:phpslice:*:*:*:*:*:*:*:*

Версия до 0.1.6 (включая)

EPSS

Процентиль: 75%

0.00933

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-jcf9-xfqg-fhv7

github

больше 3 лет назад

The checkAccess function in PHPSlice 0.1.4, and all other versions between 0.1.1 and 0.1.6, does not properly verify the administrative access level, which could allow remote attackers to gain privileges.

EPSS

Процентиль: 75%

0.00933

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other