Accscripts: Security Vulnerabilities
Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses.
CVSS Score
6.8
EPSS Score
0.001
Published
2010-06-25
Cross-site request forgery (CSRF) vulnerability in index.php in Acc PHP eMail 1.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords.
CVSS Score
6.8
EPSS Score
0.002
Published
2010-06-25
Acc PHP eMail 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the NEWSLETTERLOGIN cookie to "admin".
CVSS Score
7.5
EPSS Score
0.02
Published
2009-02-26
Acc Autos 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the (1) username_cookie to "admin," (2) right_cookie to "1," and (3) id_cookie to "1."
CVSS Score
7.5
EPSS Score
0.024
Published
2009-02-26
admin/Index.php in Acc Real Estate 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie to "admin."
CVSS Score
7.5
EPSS Score
0.024
Published
2009-02-26
admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie cookie to "admin."
CVSS Score
7.5
EPSS Score
0.024
Published
2009-02-26