7.5
CVE-2006-4048
- EPSS 1.48%
- Veröffentlicht 09.08.2006 23:04:00
- Zuletzt bearbeitet 16.06.2026 22:28:19
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginNetious CMS 0.4 initializes session IDs based on the client IP address, which allows remote attackers to gain access to the administration section when originating from the same IP address as the administrator. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Netious Cms ≫ Netious Cms Version0.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.48% | 0.706 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/21347
http://www.vupen.com/english/advisories/2006/3167
http://www.osvdb.org/27789
http://www.securityfocus.com/bid/19421
https://exchange.xforce.ibmcloud.com/vulnerabilities/28264