Lucene search
MitreCVE-2009-4674HistoryMar 05, 2010 - 6:30 p.m.
CVE-2009-4674
2010-03-0518:30:00
CWE-255
mitre
web.nvd.nist.gov
23
cve-2009-4674
admin.php
mole group sky hunter
airline ticket sale script
bus ticket script
remote attackers
password change
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.023
Percentile
89.8%
admin/admin.php in Mole Group Sky Hunter Airline Ticket Sale Script and Bus Ticket Script allows remote attackers to change an arbitrary password via a modified user_id field.
Affected configurations
Node
mole-groupbus_ticket_scriptMatch-
ORmole-groupsky_hunter_airline_ticket_sale_scriptMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mole-group | bus_ticket_script | - | cpe:2.3:a:mole-group:bus_ticket_script:-:*:*:*:*:*:*:* |
| mole-group | sky_hunter_airline_ticket_sale_script | - | cpe:2.3:a:mole-group:sky_hunter_airline_ticket_sale_script:-:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2009-4674
2010-03-05 18:30:00
exploitdb
exploitdb
Mole Group Sky Hunter/Bus Ticket Scripts - Change Admin Password
2009-05-22 00:00:00
prion
prion
Code injection
2010-03-05 18:30:00
cvelist
cvelist
CVE-2009-4674
2010-03-05 18:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.023
Percentile
89.8%
Related for CVE-2009-4674