Описание
Authentication bypass vulnerability in Amazing Little Poll affecting versions 1.3 and 1.4. This vulnerability could allow an unauthenticated user to access the admin panel without providing any credentials by simply accessing the "lp_admin.php?adminstep=" parameter.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mr-corner:amazing_little_poll:1.3:*:*:*:*:*:*:*
cpe:2.3:a:mr-corner:amazing_little_poll:1.4:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
9.4 Critical
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 9.4
github
около 2 лет назад
Authentication bypass vulnerability in Amazing Little Poll affecting versions 1.3 and 1.4. This vulnerability could allow an unauthenticated user to access the admin panel without providing any credentials by simply accessing the "lp_admin.php?adminstep=" parameter.
EPSS
Процентиль: 21%
0.00068
Низкий
9.4 Critical
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-287