Lucene search

[email protected]CVE-2008-3211

HistoryJul 18, 2008 - 3:13 p.m.

CVE-2008-3211

2008-07-1815:13:00

CWE-287

[email protected]

web.nvd.nist.gov

cve-2008-3211

image hosting

scripteen

authentication bypass

remote attack

7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.3%

JSON

Scripteen Free Image Hosting Script 1.2 and 1.2.1 allows remote attackers to bypass authentication and gain administrative access by setting the cookid cookie value to 1.

Affected configurations

NVD

Node

scripteenfree_image_hosting_scriptMatch1.2

scripteenfree_image_hosting_scriptMatch1.2.1

CPENameOperatorVersion
scripteen:free_image_hosting_scriptscripteen free image hosting scripteq1.2
scripteen:free_image_hosting_scriptscripteen free image hosting scripteq1.2.1

CPE	Name	Operator	Version
scripteen:free_image_hosting_script	scripteen free image hosting script	eq	1.2
scripteen:free_image_hosting_script	scripteen free image hosting script	eq	1.2.1

References

secunia.com/advisories/31083

securityreason.com/securityalert/4014

www.securityfocus.com/bid/30217

www.vupen.com/english/advisories/2008/2106/references

exchange.xforce.ibmcloud.com/vulnerabilities/43771

www.exploit-db.com/exploits/6070

7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.3%

JSON

Related for CVE-2008-3211

prion2 nvd2 cvelist2 cve1