← back
CVE-2003-1245

CVE-2003-1245

EPSS 4.1%
index2.php in Mambo 4.0.12 allows remote attackers to gain administrator access via a URL request where session_id is set to the MD5 hash of a session cookie.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/22281unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2003-02/0302.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/11398http://www.securityfocus.com/bid/6926