CVE

Id
40205  
CVE No.
CVE-2009-2770  
Status
Candidate  
Description
PowerUpload 2.4 allows remote attackers to bypass authentication and gain administrative access via a MIME encoded value of admin for the myadminname cookie.  
Phase
Assigned (20090814)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
441924 40205 CVE-2009-2770 MILW0RM:9219  View
441925 40205 CVE-2009-2770 URL:http://www.milw0rm.com/exploits/9219  View
441926 40205 CVE-2009-2770 VUPEN:ADV-2009-1962  View
441927 40205 CVE-2009-2770 URL:http://www.vupen.com/english/advisories/2009/1962  View
441928 40205 CVE-2009-2770 XF:powerupload-cookie-security-bypass(51860)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
45209 JVNDB-2009-006216 PHP Paid 4 Mail Script の paidbanner.php における SQL インジェクションの脆弱性 PHP Paid 4 Mail Script の paidbanner.php には、SQL インジェクションの脆弱性が存在します。 CVE-2009-2774 40205 7.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-006216.html  View