Описание
Unspecified vulnerability in ss.php in AL-Caricatier 2.5 and earlier allows remote attackers to bypass login authentication by requesting view_caricatier.php, and then requesting any file in the admin directory with a cookie_username=admin argument.
Ссылки
- Exploit
- Vendor Advisory
- Exploit
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:al-caricatier:al-caricatier:1.0:*:*:*:*:*:*:*
cpe:2.3:a:al-caricatier:al-caricatier:2.5:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00744
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Unspecified vulnerability in ss.php in AL-Caricatier 2.5 and earlier allows remote attackers to bypass login authentication by requesting view_caricatier.php, and then requesting any file in the admin directory with a cookie_username=admin argument.
EPSS
Процентиль: 73%
0.00744
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other