PT-2012-3030 · Optimizely+1 · Ektron Cms+3

Jens Nygård

Published

2012-02-08

Updated

2012-02-14

CVE-2012-1031

CVSS v2.0

6.0

Medium

Vector

AV:N/AC:M/Au:S/C:P/I:P/A:P

Unspecified vulnerability in EPiServer CMS 5 and 6 through 6R2, in certain configurations using Forms Authentication, allows remote authenticated users to obtain WebAdmins access by leveraging Edit Mode privileges, a different vulnerability than CVE-2011-3416 and CVE-2011-3417.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2012-1031

Affected Products

Ektron Cms

Episerver

Optimizely Content Management

Episerver Cms

PT-2012-3030 · Optimizely+1 · Ektron Cms+3

CVE-2012-1031

Related Identifiers

Affected Products

References · 6