Описание
Vignette StoryServer 4 and 5, Vignette V/5, and possibly other versions allows remote attackers to perform unauthorized SELECT queries by setting the vgn_creds cookie to an arbitrary value and directly accessing the save template.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:vignette:content_suite:6.0:*:*:*:*:*:*:*
cpe:2.3:a:vignette:content_suite:7.0:*:*:*:*:*:*:*
cpe:2.3:a:vignette:storyserver:4.0:*:*:*:*:*:*:*
cpe:2.3:a:vignette:storyserver:4.1:*:*:*:*:*:*:*
cpe:2.3:a:vignette:storyserver:5.0:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette:5.0:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.0061
Низкий
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Vignette StoryServer 4 and 5, Vignette V/5, and possibly other versions allows remote attackers to perform unauthorized SELECT queries by setting the vgn_creds cookie to an arbitrary value and directly accessing the save template.
EPSS
Процентиль: 69%
0.0061
Низкий
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other