Lucene search
HistoryFeb 14, 2007 - 11:28 a.m.
CVE-2007-0924
cve-2007-0924
phppolls
authentication bypass
remote attack
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.9 Medium
AI Score
Confidence
Low
0.013 Low
EPSS
Percentile
85.6%
Till Gerken phpPolls 1.0.3 allows remote attackers to bypass authentication and perform certain administrative actions via a direct request to phpPollAdmin.php3. NOTE: this issue might subsume CVE-2006-3764.
Affected configurations
Node
till_gerkenphppollsMatch1.0.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| till_gerken:phppolls | till gerken phppolls | eq | 1.0.3 |
Related
prion
prion
Authentication flaw
2007-02-14 11:28:00
cvelist
cvelist
CVE-2007-0924
2007-02-14 11:00:00
CVE-2006-3764
2006-07-21 00:00:00
nvd
nvd
CVE-2007-0924
2007-02-14 11:28:00
CVE-2006-3764
2006-07-21 14:03:00
cve
cve
CVE-2006-3764
2006-07-21 14:03:00
securityvulns
securityvulns
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.9 Medium
AI Score
Confidence
Low
0.013 Low
EPSS
Percentile
85.6%
Related for CVE-2007-0924