CVE-2008-0575

Cross-site request forgery (CSRF) vulnerability in admin/admincenter.php in webSPELL 4.01.02 allows remote attackers to assign the superadmin privilege level to arbitrary accounts as administrators via an "update member" action.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
VendorProductVersion
webspellwebspell
4.01.02
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/28684
http://securityreason.com/securityalert/3606
http://www.securityfocus.com/archive/1/487312/100/0/threaded
http://secunia.com/advisories/28684
http://securityreason.com/securityalert/3606
http://www.securityfocus.com/archive/1/487312/100/0/threaded