Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.4
CVSSv2

CVE-2003-1488

Published: 31/12/2003 Updated: 29/07/2017
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
VMScore: 645
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Subscribe to Truelogik

Vulnerability Summary

The (1) verif_admin.php and (2) check_admin.php scripts in Truegalerie 1.0 allow remote malicious users to gain administrator access via a request to admin.php without the connect parameter and with the loggedin parameter set to any value, such as 1.

Vulnerable Product Search on Vulmon Subscribe to Product

truelogik truegalerie 1.0

Exploits

Exploit DB: Truegalerie 1.0 - Unauthorized Administrative Access
source: wwwsecurityfocuscom/bid/7427/info A vulnerability has been reported for Truegalerie that may result in unauthorized administrative access The vulnerability exists due to insufficient sanitization of some URI values [target]/adminphp?loggedin=1 ...

References

CWE-20http://www.securityfocus.com/bid/7427http://secunia.com/advisories/8683http://marc.info/?l=vulnwatch&m=105128431109082&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/11886https://nvd.nist.govhttps://www.exploit-db.com/exploits/22534/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook