CVE-2002-0588

PVote before 1.9 does not authenticate users for restricted operations, which allows remote attackers to add or delete polls by modifying parameters to (1) add.php or (2) del.php.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:steve_korbett:pvote:1.0:*:*:*:*:*:*:*
cpe:2.3:a:steve_korbett:pvote:1.0a:*:*:*:*:*:*:*
cpe:2.3:a:steve_korbett:pvote:1.0b:*:*:*:*:*:*:*
cpe:2.3:a:steve_korbett:pvote:1.5:*:*:*:*:*:*:*

History

No history.

Information

Published : 2002-06-18 04:00

Updated : 2024-02-04 16:31


NVD link : CVE-2002-0588

Mitre link : CVE-2002-0588

CVE.ORG link : CVE-2002-0588


JSON object : View

Products Affected

steve_korbett

  • pvote