Lucene search

[email protected]CVE-2007-5062

HistorySep 24, 2007 - 10:17 p.m.

CVE-2007-5062

2007-09-2422:17:00

CWE-264

[email protected]

web.nvd.nist.gov

cve-2007-5062

account.php

adam scheinberg flip 3.0

remote attackers

administrative accounts

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.022 Low

EPSS

Percentile

89.5%

JSON

account.php in Adam Scheinberg Flip 3.0 and earlier allows remote attackers to create administrative accounts via the un parameter in a register action.

Affected configurations

NVD

Node

adam_scheinbergflipRange≤3.0

CPENameOperatorVersion
adam_scheinberg:flipadam scheinberg fliple3.0

CPE	Name	Operator	Version
adam_scheinberg:flip	adam scheinberg flip	le	3.0

References

osvdb.org/41904

www.securityfocus.com/bid/25746

exchange.xforce.ibmcloud.com/vulnerabilities/36709

www.exploit-db.com/exploits/4435

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.022 Low

EPSS

Percentile

89.5%

JSON

Related for CVE-2007-5062

prion1 nvd1 cvelist1