Lucene search
K

324 matches found

Exploit DB
Exploit DB
added 2003/03/17 12:0 a.m.27 views

Outblaze Webmail - Cookie Authentication Bypass

// source: https://www.securityfocus.com/bid/7115/info Outblaze web mail service has been reported prone to an authentication cookie spoofing vulnerability. This issue may allow a malicious attacker to bypass the cookie-based authentication mechanisms used by the affected Outblaze web mail server...

7AI score
Exploits0
CERT
CERT
added 2002/09/16 12:0 a.m.17 views

x_news allows unauthorized users to access administrative menu

Overview xnews allows a user to authenticate without supplying the user's plaintext password. Description xnews is a system for managing news. When a user logs in to xnews version 1.1 using a plaintext password, xnews hashes the password with MD5 and compares it to user's hash stored in the file...

7.1AI score
Exploits0References2
CVE
CVE
added 2002/06/11 4:0 a.m.53 views

CVE-2002-0491

The CVE-2002-0491 entry concerns AlGuest 1.0 guestbook’s admin.php authentication, which incorrectly relies on the existence of an admin cookie. An attacker can set the admin cookie to an arbitrary value, bypassing authentication and gaining administrative privileges. The vulnerability is web‑acc...

10CVSS7.7AI score0.03237EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2002/06/11 4:0 a.m.40 views

CVE-2002-0486

Affected: Intellisol Xpede 4.1. The CVE-2002-0486 entry describes that the product stores authentication information in cookies using weak encryption, enabling local access to cookies to escalate privileges. Root cause: weak encryption used for cookie-stored credentials. Impact: according to NVD ...

7.2CVSS6.9AI score0.00792EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder