CVE-2008-0293

EUVD-2008-0304
Unspecified vulnerability in cron.php in FreeSeat before 1.1.5d, when format.php has certain modifications, allows remote attackers to bypass authentication and gain privileges via unspecified vectors related to the show_foot function.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 48%
Affected Products (NVD)
VendorProductVersion
freeseatfreeseat
𝑥
≤ 1.1.5c
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/28459
http://sourceforge.net/project/shownotes.php?group_id=160239&release_id=568374
https://exchange.xforce.ibmcloud.com/vulnerabilities/39648
http://secunia.com/advisories/28459
http://sourceforge.net/project/shownotes.php?group_id=160239&release_id=568374
https://exchange.xforce.ibmcloud.com/vulnerabilities/39648