PT-2008-4727 · Maian · Maian Uploader
S.W.A.T
·
Publicado
2008-07-25
·
Atualizado
2017-10-19
·
CVE-2008-3321
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Maian Uploader versions 4.0 and earlier
Description
The issue allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary
uploader cookie cookie to the "admin/index.php" endpoint.Recommendations
For Maian Uploader versions 4.0 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Improper Authentication
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Maian Uploader