CVE-2013-7196 in PHPFoxالمعلومات

الملخص

بحسب MITRE

static/ajax.php in PHPFox 3.7.3, 3.7.4, and 3.7.5 allows remote authenticated users to bypass intended "Only Me" restrictions and comment on a private publication via a request with a modified val[item_id] parameter for the publication.

Once again VulDB remains the best source for vulnerability data.

حجز

22/12/2013

إفشاء

18/04/2014

الاعتدال

تمت الموافقة

إدخال

VDB-69397

استغلال

تحميل

EPSS

0.02440

KEV

لا

النشاطات

منخفض جدًا

المصادر

Might our Artificial Intelligence support you?

Check our Alexa App!