CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Accscripts: >> Acc Statistics Security Vulnerabilities

CVE-2009-4905

Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses.

CVSS Score

6.8

EPSS Score

0.001

Published

2010-06-25

CVE-2008-6294

admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie cookie to "admin."

CVSS Score

7.5

EPSS Score

0.024

Published

2009-02-26

Page 1

Vulnerabilities

Vulnerable Software

Accscripts: >> Acc Statistics Security Vulnerabilities

Products

Pricing

Contact Us