← back
CVE-2010-1040

CVE-2010-1040

EPSS 1.1%
The "IP address range limitation" function in OpenPNE 1.6 through 1.8, 2.0 through 2.8, 2.10 through 2.14, and 3.0 through 3.4, when mobile device support is enabled, allows remote attackers to bypass the "simple login" functionality via unknown vectors related to spoofing.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000006.htmlhttp://jvn.jp/en/jp/JVN06874657/index.htmlhttp://secunia.com/advisories/38857http://www.ipa.go.jp/security/vuln/alert/201003_openpne.htmlhttp://www.openpne.jp/archives/4612/