CVE-2008-6673 in QuickerSiteinformação

Sumário

de MITRE

asp/bs_login.asp in QuickerSite 1.8.5 does not properly restrict access to administrative functionality, which allows remote attackers to (1) change the admin password via the cSaveAdminPW action; (2) modify site information, such as the contact address, via the saveAdmin; and (3) modify the site design via the saveDesign action.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

07/04/2009

Divulgação

08/04/2009

Moderação

aceite

Entrada

VDB-47615

CPE

pronto

Exploração

Descarregar

EPSS

0.02298

KEV

não

Atividades

muito baixo

Fontes

Want to know what is going to be exploited?

We predict KEV entries!