5
CVE-2008-6774
- EPSS 1.93%
- Veröffentlicht 29.04.2009 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:02:56
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Logininternettoolbar/edit.php in YourPlace 1.0.2 and earlier does not end execution when an invalid username is detected, which allows remote attackers to bypass intended restrictions and edit toolbar settings via an invalid username. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Peterselie ≫ Yourplace Version <= 1.0.2
Peterselie ≫ Yourplace Version1.0
Peterselie ≫ Yourplace Version1.0.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.93% | 0.773 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/33272
https://exchange.xforce.ibmcloud.com/vulnerabilities/47566