CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
72.4%
details2.php in OrganicPHP PHP-affiliate 1.0, and possibly later versions, allows remote attackers to modify information of other users by modifying certain hidden form fields.
Vendor | Product | Version | CPE |
---|---|---|---|
organicphp | php-affiliate | 1.0 | cpe:2.3:a:organicphp:php-affiliate:1.0:*:*:*:*:*:*:* |
organicphp | php-affiliate | 1.1 | cpe:2.3:a:organicphp:php-affiliate:1.1:*:*:*:*:*:*:* |