CVE-2005-2489

Опубликовано: 07 авг. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Web Content Management News System allows remote attackers to create arbitrary accounts and gain privileges via a direct request to Admin/Users/AddModifyInput.php.

Ссылки

http://secunia.com/advisories/16317
Vendor Advisory
http://securitytracker.com/id?1014616
Exploit
http://www.osvdb.org/18524
http://www.rgod.altervista.org/webc.html
Exploit
http://www.securityfocus.com/bid/14465
https://exchange.xforce.ibmcloud.com/vulnerabilities/21694
http://secunia.com/advisories/16317
Vendor Advisory
http://securitytracker.com/id?1014616
Exploit
http://www.osvdb.org/18524
http://www.rgod.altervista.org/webc.html
Exploit
http://www.securityfocus.com/bid/14465
https://exchange.xforce.ibmcloud.com/vulnerabilities/21694

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:web_content_management:web_content_management_news_system:*:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01802

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-m98p-4vj4-j8f9

github

почти 4 года назад