CVE-2007-5441 in CMS Made Simpleinfo

Zusammenfassung (Englisch)

CMS Made Simple 1.1.3.1 does not check the permissions assigned to users in some situations, which allows remote authenticated users to perform some administrative actions, as demonstrated by (1) adding a user via a direct request to admin/adduser.php and (2) reading the admin log via an "admin/adminlog.php?page=1" request.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservieren

14.10.2007

Veröffentlichung

14.10.2007

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
39251	CMS Made Simple Administrative erweiterte Rechte	264	Nicht definiert	Nicht definiert	CVE-2007-5441

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!