Описание
PortalApp 4.0 does not require authentication for (1) forums.asp and (2) content.asp, which allows remote attackers to create and delete forums, topics, and replies.
Ссылки
- Vendor Advisory
- Patch
- Vendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:portalapp:portalapp:4.0:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.08223
Низкий
7.5 High
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
больше 3 лет назад
PortalApp 4.0 does not require authentication for (1) forums.asp and (2) content.asp, which allows remote attackers to create and delete forums, topics, and replies.
EPSS
Процентиль: 92%
0.08223
Низкий
7.5 High
CVSS2
Дефекты
CWE-287