CVE Vulnerabilities

CVE-2000-0435

Published: May 13, 2000 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The allmanageup.pl file upload CGI script in the Allmanage Website administration software 2.6 can be called directly by remote attackers, which allows them to modify user accounts or web pages.

Affected Software

Name Vendor Start Version End Version
Allmanage Matthew_redman 2.6 (including) 2.6 (including)

References