Vulnerability Details CVE-2004-0249
PHPX 2.0 through 3.2.4 allows remote attackers to gain access to other accounts by modifying the cookie's PXL variable to reference another userID.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.048
EPSS Ranking 89.1%
CVSS Severity
CVSS v2 Score 10.0
References
- http://archives.neohapsis.com/archives/bugtraq/2004-03/0154.html
- http://marc.info/?l=bugtraq&m=107586932324901&w=2
- http://secunia.com/advisories/10797/
- http://www.securityfocus.com/bid/9569
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15052
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15512
- http://archives.neohapsis.com/archives/bugtraq/2004-03/0154.html
- http://marc.info/?l=bugtraq&m=107586932324901&w=2
- http://secunia.com/advisories/10797/
- http://www.securityfocus.com/bid/9569
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15052
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15512