Lucene search
MitreCVE-2008-6231HistoryFeb 20, 2009 - 11:30 p.m.
CVE-2008-6231
2009-02-2023:30:00
CWE-255
mitre
web.nvd.nist.gov
22
cve-2008-6231
remote attackers
authentication bypass
administrative access
pre classified listing php
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.011
Percentile
84.2%
Pre Classified Listing PHP allows remote attackers to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to “admin”.
Affected configurations
Node
preprojectspre_classified_listingsMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| preprojects | pre_classified_listings | - | cpe:2.3:a:preprojects:pre_classified_listings:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-6231
2009-02-20 23:00:00
prion
prion
Authentication flaw
2009-02-20 23:30:00
nvd
nvd
CVE-2008-6231
2009-02-20 23:30:00
exploitdb
exploitdb
Pre Shopping Mall - Insecure Cookie Handling
2008-11-05 00:00:00
Pre Classified Listings - Insecure Cookie Handling
2008-11-05 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.011
Percentile
84.2%
Related for CVE-2008-6231