Lucene search
HistoryMar 10, 2009 - 2:30 p.m.
CVE-2009-0864
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.006
Percentile
79.4%
S-Cms 1.1 Stable allows remote attackers to bypass authentication and obtain administrative access via an OK value for the login cookie.
Affected configurations
Node
matteoiammarrones-cmsMatch1.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| matteoiammarrone | s-cms | 1.1 | cpe:2.3:a:matteoiammarrone:s-cms:1.1:*:*:*:*:*:*:* |
Related
prion
prion
Authentication flaw
2009-03-10 14:30:00
cvelist
cvelist
CVE-2009-0864
2009-03-10 14:00:00
cve
cve
CVE-2009-0864
2009-03-10 14:30:00
exploitdb
exploitdb
S-CMS 1.1 Stable - Insecure Cookie Handling / Mass Page Delete
2009-02-17 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.006
Percentile
79.4%
Related for NVD:CVE-2009-0864