CVE-2002-1884

Name of the Vulnerable Software and Affected Versions Py-Membres version 3.1

Description The issue allows remote attackers to log in as an administrator by manipulating the pymembs parameter. Specifically, setting the pymembs parameter to "admin" enables unauthorized access.

Recommendations For Py-Membres version 3.1, consider temporarily restricting access to the index.php file until a patch is available. As a workaround, avoid using the pymembs parameter or restrict its value to prevent unauthorized administrator login. At the moment, there is no information about a newer version that contains a fix for this vulnerability.