PT-2001-2489 · Phpslice · Phpslice
Published
2001-07-19
·
Updated
2024-02-14
·
CVE-2001-1367
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
PHPSlice versions 0.1.1 through 0.1.6
Description
The issue concerns the
checkAccess function, which does not properly verify the administrative access level. This could allow remote attackers to gain privileges.Recommendations
For PHPSlice versions 0.1.1 through 0.1.6, as a temporary workaround, consider disabling the
checkAccess function until a patch is available.Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Phpslice