CVE-2007-1043

Description

Ezboo webstats, possibly 3.0.3, allows remote attackers to bypass authentication and gain access via a direct request to (1) update.php and (2) config.php.

Related CPE's

Could not find any relations

References

http://forums.avenir-geopolitique.net/viewtopic.php?t=2674

ExploitVendor Advisory

22590

2275

34181

ezboo-update-unauthorized-access(32563)

20070215 Ezboo webstats acces to sensitive files

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:L/Au:N/C:P/I:P/A:P

AccessVector

NETWORK

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

PARTIAL

IntegrityImpact

PARTIAL

AvailabilityImpact

PARTIAL

BaseScore

7.5

Created by Yello
About Severity.io