Описание
login.php in PhpAddEdit 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the addedit cookie parameter.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpaddedit:phpaddedit:1.3:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04793
Низкий
7.5 High
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
больше 3 лет назад
login.php in PhpAddEdit 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the addedit cookie parameter.
EPSS
Процентиль: 89%
0.04793
Низкий
7.5 High
CVSS2
Дефекты
CWE-287