CVE-2007-2822 - TutorialCMS 1.01 and earlier, when register_globals is enabled, allows remote attackers to bypass au

CVE-2007-2822

Summary

TutorialCMS 1.01 and earlier, when register_globals is enabled, allows remote attackers to bypass authentication via the (1) loggedIn and (2) activated parameters to (a) login.php, (b) headerLinks.php, (c) submit1.php, (d) myFav.php, and (e) userCP.php.

References

http://osvdb.org/36520
http://secunia.com/advisories/25358
http://www.vupen.com/english/advisories/2007/1903
http://www.wavelinkmedia.com/scripts/tutorialcms/
https://exchange.xforce.ibmcloud.com/vulnerabilities/34401
https://www.exploit-db.com/exploits/3963

Vulnerable Configurations

cpe:2.3:a:wavelink_media:tutorialcms:*:*:*:*:*:*:*:*
cpe:2.3:a:wavelink_media:tutorialcms:*:*:*:*:*:*:*:*

CVSS

Base:	9.3 (as of 11-10-2017 - 01:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:C/I:C/A:C

refmap via4

confirm	http://www.wavelinkmedia.com/scripts/tutorialcms/
exploit-db	3963
osvdb	36520
secunia	25358
vupen	ADV-2007-1903
xf	tutorialcms-multiple-security-bypass(34401)

Last major update

11-10-2017 - 01:32

Published

22-05-2007 - 21:30

Last modified

11-10-2017 - 01:32