CVE-2008-1727

EUVD-2008-1728
KnowledgeQuest 2.5 and 2.6 does not require authentication for access to admincheck.php, which allows remote attackers to create arbitrary admin accounts.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 87%
Affected Products (NVD)
VendorProductVersion
myknowledgequestknowledgequest
2.5
myknowledgequestknowledgequest
2.6
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/29716
http://www.osvdb.org/44257
https://exchange.xforce.ibmcloud.com/vulnerabilities/41747
https://www.exploit-db.com/exploits/5418
http://secunia.com/advisories/29716
http://www.osvdb.org/44257
https://exchange.xforce.ibmcloud.com/vulnerabilities/41747
https://www.exploit-db.com/exploits/5418