PT-2005-2507 · Pwsphp · Pwsphp

Froggz

Published

2005-05-11

Updated

2017-07-11

CVE-2005-1511

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions PwsPHP version 1.2.2

Description The issue allows remote attackers to bypass authentication and post arbitrary comments via the Pseudo cookie.

Recommendations For PwsPHP version 1.2.2, consider disabling the use of the Pseudo cookie until a patch is available to prevent authentication bypass and arbitrary comment posting.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1511

Affected Products

Pwsphp

PT-2005-2507 · Pwsphp · Pwsphp

CVE-2005-1511

Related Identifiers

Affected Products

References · 5