Lucene search
MitreCVE-2008-6723HistoryApr 14, 2009 - 4:26 p.m.
CVE-2008-6723
2009-04-1416:26:56
CWE-287
mitre
web.nvd.nist.gov
26
cve-2008-6723
turnkeyforms entertainment portal
authentication bypass
remote attack
administrative access
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.05
Percentile
92.9%
TurnkeyForms Entertainment Portal 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the adminLogged cookie to Administrator.
Affected configurations
Node
turnkeyformsentertainment_portalMatch2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| turnkeyforms | entertainment_portal | 2.0 | cpe:2.3:a:turnkeyforms:entertainment_portal:2.0:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2008-6723
2009-04-14 16:26:56
cvelist
cvelist
CVE-2008-6723
2009-04-14 16:00:00
exploitdb
exploitdb
TurnkeyForms Entertainment Portal 2.0 - Insecure Cookie Handling
2008-11-07 00:00:00
prion
prion
Authentication flaw
2009-04-14 16:26:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.05
Percentile
92.9%
Related for CVE-2008-6723