Описание
admin/configuration.php in Guestbara 1.2 and earlier allows remote attackers to modify the e-mail, name, and password of the admin account by setting the zapis parameter to "ok" and providing modified admin_mail, login, and pass parameters.
Уязвимые конфигурации
Конфигурация 1Версия до 1.2 (включая)
cpe:2.3:a:guestbara:guestbara:*:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02056
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
admin/configuration.php in Guestbara 1.2 and earlier allows remote attackers to modify the e-mail, name, and password of the admin account by setting the zapis parameter to "ok" and providing modified admin_mail, login, and pass parameters.
EPSS
Процентиль: 84%
0.02056
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other