Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2002-1410

Published: 11/04/2003 Updated: 05/09/2008
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Easy Guestbook CGI programs do not authenticate the administrator, which allows remote malicious users to (1) delete entries via direct access of admin.cgi, or (2) reconfigure Guestbook via direct access of config.cgi.

Vulnerable Product Search on Vulmon Subscribe to Product

ben chivers ben chivers guestbook 1.0

easy scripts archive easy guestbook 1.0

Exploits

Exploit DB: Ben Chivers Easy Guestbook 1.0 - Administrative Access
source: wwwsecurityfocuscom/bid/5341/info The vulnerability has been reported for Easy Guestbook 10 It is possible for an atttacker to modify any user's guestbook by deleting entries The vulnerability is the result of Guestbook failing to properly authenticate users who wish to edit guestbooks <html> <body> <h1>Eas ...

References

NVD-CWE-Otherhttp://archives.neohapsis.com/archives/bugtraq/2002-07/0356.htmlhttp://www.securityfocus.com/bid/5341http://www.iss.net/security_center/static/9697.phphttps://nvd.nist.govhttps://www.exploit-db.com/exploits/21659/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypassopen redirectCVE-2024-4358CVE-2024-24199CVE-2024-5550CVE-2024-5305CVE-2024-30373CVE-2024-1800deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook