CVE-2008-5221

The account_save action in admin/userinfo.php in wPortfolio 0.3 and earlier does not require authentication and does not require knowledge of the original password, which allows remote attackers to change the admin account password via modified password and password_retype parameters.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://securityreason.com/securityalert/4631
http://www.securityfocus.com/bid/32384	Exploit
http://www.vupen.com/english/advisories/2008/3219
https://exchange.xforce.ibmcloud.com/vulnerabilities/46772
https://www.exploit-db.com/exploits/7170

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:wportfolio:wportfolio::::::::
	cpe:2.3:a:wportfolio:wportfolio:0.2:::::::*

History

No history.

Information

Published : 2008-11-25 18:30

Updated : 2024-02-04 17:33

NVD link : CVE-2008-5221

Mitre link : CVE-2008-5221

CVE.ORG link : CVE-2008-5221

JSON object : View

Products Affected

wportfolio

wportfolio

CWE

CWE-287

Improper Authentication

{"id": "CVE-2008-5221", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2008-11-25T18:30:00.500", "references": [{"url": "http://securityreason.com/securityalert/4631", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/32384", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/3219", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46772", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/7170", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}], "descriptions": [{"lang": "en", "value": "The account_save action in admin/userinfo.php in wPortfolio 0.3 and earlier does not require authentication and does not require knowledge of the original password, which allows remote attackers to change the admin account password via modified password and password_retype parameters."}, {"lang": "es", "value": "La accion account_save en admin/userinfo.php en wPortfolio v0.3 y anteriores no necesita autenticaci\u00f3n a no es necesario conocer la contrase\u00f1a original, lo que permite a usuarios remotos cambiar la contrase\u00f1a de la cuenta de administrador a trav\u00e9s de los par\u00e1metros modificados \"password\" (contrase\u00f1a) y \"password_retype\" (reescribir contrase\u00f1a)."}], "lastModified": "2017-09-29T01:32:31.760", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:wportfolio:wportfolio:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D647BB0C-AB05-4D4F-BEE8-582E2977099B", "versionEndIncluding": "0.3"}, {"criteria": "cpe:2.3:a:wportfolio:wportfolio:0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACA56D50-DDD6-42A9-A3EA-4F8278A32319"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}