PT-2005-1660 · Phpbb · Phpbb
Paisterist
·
Publicado
2005-03-03
·
Atualizado
2016-10-18
·
CVE-2005-0614
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
phpBB versions 2.0.12 and earlier
Description
The issue allows remote attackers to gain administrator privileges. This is achieved by manipulating the
autologinid value in a cookie in the sessions.php file.Recommendations
For phpBB versions 2.0.12 and earlier, update to a version later than 2.0.12 to resolve the issue.
Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Phpbb