CVE-2008-4614

EUVD-2008-4594
PortalApp 4.0 does not require authentication for (1) forums.asp and (2) content.asp, which allows remote attackers to create and delete forums, topics, and replies.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 92%
Affected Products (NVD)
VendorProductVersion
portalappportalapp
4.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/28337
http://securityreason.com/securityalert/4439
http://www.aspapp.com/content.asp?CatId=197&ContentType=Downloads
http://www.securityfocus.com/bid/27170
https://exchange.xforce.ibmcloud.com/vulnerabilities/39457
https://www.exploit-db.com/exploits/4848
http://secunia.com/advisories/28337
http://securityreason.com/securityalert/4439
http://www.aspapp.com/content.asp?CatId=197&ContentType=Downloads
http://www.securityfocus.com/bid/27170
https://exchange.xforce.ibmcloud.com/vulnerabilities/39457
https://www.exploit-db.com/exploits/4848