PT-2006-3203 · Codemunkyx · Codemunkyx Simple Poll

Publicado

2006-05-05

Atualizado

2018-10-18

CVE-2006-2235

CVSS v2.0

7.6

Alta

Vetor

AV:N/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions CodeMunkyX (aka free-php.net) Simple Poll version 1.0

Description The issue allows remote attackers to gain administrative privileges by appending /admin/ to the top-level URI of the application when authentication is not required for the admin directory.

Recommendations For CodeMunkyX (aka free-php.net) Simple Poll version 1.0, ensure that authentication is required for the admin directory to prevent unauthorized access.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-2235

Produtos afetados

Codemunkyx Simple Poll

PT-2006-3203 · Codemunkyx · Codemunkyx Simple Poll

CVE-2006-2235

Identificadores relacionados

Produtos afetados

Referências · 4