Back to search
CVE-2002-0589
Published: Jun 11, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
PVote before 1.9 allows remote attackers to change the administrative password and gain privileges by directly calling ch_info.php with the newpass and confirm parameters both set to the new password.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20020418 [[ TH 026 Inc. ]] SA #1 - Multiple vulnerabilities in PVote 1.5
mailing-list
x_refsource_BUGTRAQ
http://orbit-net.net:8001/php/pvote/
x_refsource_CONFIRM
4541
vdb-entry
x_refsource_BID
pvote-change-admin-password(8878)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now