7.5
CVE-2009-2293
- EPSS 2.49%
- Veröffentlicht 01.07.2009 13:00:01
- Zuletzt bearbeitet 16.06.2026 23:09:09
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginOptimum Web Design Tutorial Share 3.5.0 and earlier allows remote attackers to bypass authentication and obtain administrative access by setting the usernamed cookie parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Tutorial-share ≫ Tutorial Share Version <= 3.5.0
Tutorial-share ≫ Tutorial Share Version3.0.0
Tutorial-share ≫ Tutorial Share Version3.0.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.49% | 0.826 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://osvdb.org/54704
http://secunia.com/advisories/35207
http://www.exploit-db.com/exploits/8766
http://www.securityfocus.com/bid/35075
https://exchange.xforce.ibmcloud.com/vulnerabilities/50685