exploitDog

CVE-2009-4927

Опубликовано: 12 июл. 2010

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

WB News 2.1.2 allows remote attackers to bypass authentication and gain administrative access via a modified WBNEWS cookie, as demonstrated by setting this cookie to 1.

Ссылки

http://secunia.com/advisories/34822
Vendor Advisory
http://www.exploit-db.com/exploits/8492
http://www.securityfocus.com/bid/34609
Exploit
http://secunia.com/advisories/34822
Vendor Advisory
http://www.exploit-db.com/exploits/8492
http://www.securityfocus.com/bid/34609
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:webmobo:wbnews:2.1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01693

Низкий

7.5 High

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-hg58-7mh7-hwcq

github

почти 4 года назад

WB News 2.1.2 allows remote attackers to bypass authentication and gain administrative access via a modified WBNEWS cookie, as demonstrated by setting this cookie to 1.

EPSS

Процентиль: 82%

0.01693

Низкий

7.5 High

CVSS2

Дефекты

CWE-287