Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2009-4929
HistoryJul 09, 2010 - 5:00 p.m.

CVE-2009-4929

2010-07-0917:00:00
mitre
www.cve.org
1

AI Score

6.8

Confidence

High

EPSS

0.009

Percentile

82.8%

JSON

admin/manage_users.php in TotalCalendar 2.4 does not require administrative authentication, which allows remote attackers to change arbitrary passwords via the newPW1 and newPW2 parameters.

Related

seebug 1
nvd 1
exploitdb 1
prion 1
cve 1
seebug
seebug
TotalCalendar manage_users.php页面非授权更改口令漏洞
2010-07-15 00:00:00
nvd
nvd
CVE-2009-4929
2010-07-12 13:27:16
exploitdb
exploitdb
TotalCalendar 2.4 - Remote Password Change
2009-04-20 00:00:00
prion
prion
Authentication flaw
2010-07-12 13:27:00
cve
cve
CVE-2009-4929
2010-07-12 13:27:16

AI Score

6.8

Confidence

High

EPSS

0.009

Percentile

82.8%

JSON
Related for CVELIST:CVE-2009-4929
seebug1nvd1exploitdb1prion1cve1