exploitDog

CVE-2005-0811

Опубликовано: 02 мая 2005

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a direct request to certain URLs.

Ссылки

http://secunia.com/advisories/14617
http://www.kb.cert.org/vuls/id/131828
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/12843
http://secunia.com/advisories/14617
http://www.kb.cert.org/vuls/id/131828
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/12843

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:notify_technology:notifylink:enterprise_server:*:*:*:*:*:*:*

EPSS

Процентиль: 38%

0.00164

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-j54m-vpp8-wppr

github

почти 4 года назад

The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a direct request to certain URLs.

EPSS

Процентиль: 38%

0.00164

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other