Vulnerability Details CVE-2009-4447
Jax Guestbook 3.5.0 allows remote attackers to bypass authentication and modify administrator settings via a direct request to admin/guestbook.admin.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.025
EPSS Ranking 84.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/61299
- http://secunia.com/advisories/37921
- http://www.exploit-db.com/exploits/10626
- http://www.securityfocus.com/bid/37466
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55077
- http://osvdb.org/61299
- http://secunia.com/advisories/37921
- http://www.exploit-db.com/exploits/10626
- http://www.securityfocus.com/bid/37466
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55077
Products affected by CVE-2009-4447
-
cpe:2.3:a:jax_scripts:jax_guestbook:3.5.0