CVE-2005-0811

2005-03-2005:00:00

mitre

www.cve.org

AI Score

6.3

Confidence

Low

EPSS

0.002

Percentile

59.8%

JSON

The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a direct request to certain URLs.

References

secunia.com/advisories/14617

www.kb.cert.org/vuls/id/131828

www.securityfocus.com/bid/12843