Lucene search

[email protected]NVD:CVE-2002-0588

HistoryJun 18, 2002 - 4:00 a.m.

CVE-2002-0588

2002-06-1804:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

0.03

Percentile

91.0%

JSON

PVote before 1.9 does not authenticate users for restricted operations, which allows remote attackers to add or delete polls by modifying parameters to (1) add.php or (2) del.php.

Affected configurations

Nvd

Node

steve_korbettpvoteMatch1.0

steve_korbettpvoteMatch1.0a

steve_korbettpvoteMatch1.0b

steve_korbettpvoteMatch1.5

VendorProductVersionCPE
steve_korbettpvote1.0cpe:2.3:a:steve_korbett:pvote:1.0:*:*:*:*:*:*:*
steve_korbettpvote1.0acpe:2.3:a:steve_korbett:pvote:1.0a:*:*:*:*:*:*:*
steve_korbettpvote1.0bcpe:2.3:a:steve_korbett:pvote:1.0b:*:*:*:*:*:*:*
steve_korbettpvote1.5cpe:2.3:a:steve_korbett:pvote:1.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
steve_korbett	pvote	1.0	cpe:2.3:a:steve_korbett:pvote:1.0:::::::*
steve_korbett	pvote	1.0a	cpe:2.3:a:steve_korbett:pvote:1.0a:::::::*
steve_korbett	pvote	1.0b	cpe:2.3:a:steve_korbett:pvote:1.0b:::::::*
steve_korbett	pvote	1.5	cpe:2.3:a:steve_korbett:pvote:1.5:::::::*

References

online.securityfocus.com/archive/1/268231

orbit-net.net:8001/php/pvote/

www.iss.net/security_center/static/8877.php

www.securityfocus.com/bid/4540

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

0.03

Percentile

91.0%

JSON

Related for NVD:CVE-2002-0588

cve1 cvelist1 exploitdb1