← back
CVE-2004-1828

CVE-2004-1828

EPSS 2.4%
Vcard 2.9 and possibly other versions does not require authorization to run uninstall.php, which could allow remote attackers to uninstall Vcard and delete database tables via a direct request to uninstall.php.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/23843unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=107957312531199&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/15522http://www.securityfocus.com/bid/9910