10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.2 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
60.5%
Multiple unspecified vulnerabilities in SAPID CMS before 1.2.3.03, related to newly registered users and possibly authorization checks, have unknown impact and attack vectors involving (1) mvc/controller/user_request_analysis.inc.php and (2) usr/xml/ddc/authorization.xml.
CPE | Name | Operator | Version |
---|---|---|---|
redgraphic:sapid_cms | redgraphic sapid cms | le | 1.2.3.02 |
redgraphic:sapid_cms | redgraphic sapid cms | eq | 1.2.3 |