Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2008-0210
HistoryJan 10, 2008 - 12:00 a.m.

CVE-2008-0210

2008-01-1000:00:00
mitre
www.cve.org
1

AI Score

6.8

Confidence

Low

EPSS

0.005

Percentile

77.0%

JSON

Uebimiau Webmail 2.7.10 and 2.7.2 does not protect authentication state variables from being set through HTTP requests, which allows remote attackers to bypass authentication via a sess[auth]=1 parameter settting. NOTE: this can be leveraged to conduct directory traversal attacks without authentication by using CVE-2008-0140.

Related

nvd 2
prion 2
exploitdb 1
cve 2
cvelist 1
nvd
nvd
CVE-2008-0210
2008-01-10 00:46:00
CVE-2008-0140
2008-01-08 19:46:00
prion
prion
Directory traversal
2008-01-10 00:46:00
Directory traversal
2008-01-08 19:46:00
exploitdb
exploitdb
Uebimiau Web-Mail 2.7.10/2.7.2 - Remote File Disclosure
2008-01-06 00:00:00
cve
cve
CVE-2008-0210
2008-01-10 00:46:00
CVE-2008-0140
2008-01-08 19:46:00
cvelist
cvelist
CVE-2008-0140
2008-01-08 19:00:00

AI Score

6.8

Confidence

Low

EPSS

0.005

Percentile

77.0%

JSON
Related for CVELIST:CVE-2008-0210
nvd2prion2exploitdb1cve2cvelist1