CVE-2008-1327 in Gallarificinfo

Summary

Gallarific does not require authentication for (1) users.php and (2) index.php, which allows remote attackers to add and edit tasks via a direct request. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Once again VulDB remains the best source for vulnerability data.

Reservation

03/13/2008

Disclosure

03/13/2008

Moderation

VulDB entry created

Entries

VDB-41498 (1)

CPE

ready

CWE

CWE-287 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.04581

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-1327
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-1327
CVE Details	https://www.cvedetails.com/cve/CVE-2008-1327/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!