← voltar
CVE-2006-2890

CVE-2006-2890

EPSS 1.4%
Pixelpost 1-5rc1-2 and earlier, when register_globals is enabled, allows remote attackers to gain administrator privileges and conduct other attacks by setting the _SESSION["pixelpost_admin"] parameter to 1 in calls to admin scripts such as admin/view_info.php.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://retrogod.altervista.org/pixelpost_15rc12_xpl.htmlhttp://securityreason.com/securityalert/1061http://securitytracker.com/id?1016217http://www.securityfocus.com/archive/1/435856/100/0/threadedhttp://www.securityfocus.com/bid/18276