Vulnerability Details CVE-2008-6291
Acc PHP eMail 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the NEWSLETTERLOGIN cookie to "admin".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 82.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/32507
- http://www.securityfocus.com/bid/32074
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46289
- https://www.exploit-db.com/exploits/6966
- http://secunia.com/advisories/32507
- http://www.securityfocus.com/bid/32074
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46289
- https://www.exploit-db.com/exploits/6966
Products affected by CVE-2008-6291
-
cpe:2.3:a:accscripts:acc_php_email:1.1