CVE-2009-4830

Опубликовано: 27 апр. 2010

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Unspecified vulnerability in OpenX 2.8.1 and 2.8.2 allows remote attackers to bypass authentication and obtain access to an Administrator account via unknown vectors, possibly related to www/admin/install.php, www/admin/install-plugins.php, and other www/admin/ files.

Ссылки

http://blog.openx.org/12/security-matters-2/
Patch
Vendor Advisory
http://forum.openx.org/index.php?showtopic=503454011
Patch
http://osvdb.org/61300
http://secunia.com/advisories/37914
Vendor Advisory
http://www.securityfocus.com/bid/37457
http://blog.openx.org/12/security-matters-2/
Patch
Vendor Advisory
http://forum.openx.org/index.php?showtopic=503454011
Patch
http://osvdb.org/61300
http://secunia.com/advisories/37914
Vendor Advisory
http://www.securityfocus.com/bid/37457

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:openx:openx:2.8.1:*:*:*:*:*:*:*

cpe:2.3:a:openx:openx:2.8.2:*:*:*:*:*:*:*

EPSS

Процентиль: 67%

0.00538

Низкий

7.5 High

CVSS2

Дефекты

CWE-287

Связанные уязвимости

CVE-2009-4830

debian

почти 16 лет назад

Unspecified vulnerability in OpenX 2.8.1 and 2.8.2 allows remote attac ...

GHSA-2v6m-44mf-8673

github

почти 4 года назад