CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-3647

The isloggedin function in Php/login.inc.php in phpTrafficA 1.4.3 and earlier allows remote attackers to bypass authentication and obtain administrative access by setting the username cookie to "traffic." NOTE: some of these details are obtained from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.7%

CVSS Severity

CVSS v2 Score 10.0

References

http://corryl.altervista.org/index.php?mod=read&id=1183748959
http://osvdb.org/37477
http://secunia.com/advisories/25976
http://securityreason.com/securityalert/2870
http://www.securityfocus.com/archive/1/473041/100/0/threaded
http://www.securityfocus.com/bid/24823
https://exchange.xforce.ibmcloud.com/vulnerabilities/35290
http://corryl.altervista.org/index.php?mod=read&id=1183748959
http://osvdb.org/37477
http://secunia.com/advisories/25976
http://securityreason.com/securityalert/2870
http://www.securityfocus.com/archive/1/473041/100/0/threaded
http://www.securityfocus.com/bid/24823
https://exchange.xforce.ibmcloud.com/vulnerabilities/35290

Products affected by CVE-2007-3647

Zoneo-Soft » Phptraffica » Version: 1.4

cpe:2.3:a:zoneo-soft:phptraffica:1.4
Zoneo-Soft » Phptraffica » Version: 1.4.2

cpe:2.3:a:zoneo-soft:phptraffica:1.4.2
Zoneo-Soft » Phptraffica » Version: 1.4.3

cpe:2.3:a:zoneo-soft:phptraffica:1.4.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-3647

Products

Pricing

Contact Us