Lucene search
MitreCVE-2002-0588HistoryJun 18, 2002 - 4:00 a.m.
CVE-2002-0588
2002-06-1804:00:00
mitre
web.nvd.nist.gov
28
pvote
authentication
vulnerability
remote attackers
nvd
cve-2002-0588
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
7.1
Confidence
Low
EPSS
0.03
Percentile
91.0%
PVote before 1.9 does not authenticate users for restricted operations, which allows remote attackers to add or delete polls by modifying parameters to (1) add.php or (2) del.php.
Affected configurations
Node
steve_korbettpvoteMatch1.0
ORsteve_korbettpvoteMatch1.0a
ORsteve_korbettpvoteMatch1.0b
ORsteve_korbettpvoteMatch1.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| steve_korbett | pvote | 1.0 | cpe:2.3:a:steve_korbett:pvote:1.0:*:*:*:*:*:*:* |
| steve_korbett | pvote | 1.0a | cpe:2.3:a:steve_korbett:pvote:1.0a:*:*:*:*:*:*:* |
| steve_korbett | pvote | 1.0b | cpe:2.3:a:steve_korbett:pvote:1.0b:*:*:*:*:*:*:* |
| steve_korbett | pvote | 1.5 | cpe:2.3:a:steve_korbett:pvote:1.5:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2002-0588
2002-06-18 04:00:00
exploitdb
exploitdb
PVote 1.0/1.5 - Poll Content Manipulation
2002-04-18 00:00:00
cvelist
cvelist
CVE-2002-0588
2002-06-11 04:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
7.1
Confidence
Low
EPSS
0.03
Percentile
91.0%
Related for CVE-2002-0588