exploitDog

CVE-2002-0537

Опубликовано: 03 июл. 2002

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

The admin.html file in StepWeb Search Engine (SWS) 2.5 stores passwords in links to manager.pl, which allows remote attackers who can access the admin.html file to gain administrative privileges to SWS.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2002-04/0148.html
Exploit
Patch
Vendor Advisory
http://www.iss.net/security_center/static/8849.php
Vendor Advisory
http://www.securityfocus.com/bid/4503
Patch
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2002-04/0148.html
Exploit
Patch
Vendor Advisory
http://www.iss.net/security_center/static/8849.php
Vendor Advisory
http://www.securityfocus.com/bid/4503
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:stepweb:sws:2.5:*:*:*:*:*:*:*

EPSS

Процентиль: 79%

0.01273

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-mwhh-mh99-7qg5

github

почти 4 года назад

The admin.html file in StepWeb Search Engine (SWS) 2.5 stores passwords in links to manager.pl, which allows remote attackers who can access the admin.html file to gain administrative privileges to SWS.

EPSS

Процентиль: 79%

0.01273

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other