CVE-2008-7019

EUVD-2008-6978
Esqlanelapse 2.6.1 and 2.6.2 allows remote attackers to bypass authentication and gain privileges via modified (1) enombre and (2) euri cookies.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 81%
Affected Products (NVD)
VendorProductVersion
esqlanelapseesqlanelapse
2.6.1
esqlanelapseesqlanelapse
2.6.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/31428
https://exchange.xforce.ibmcloud.com/vulnerabilities/45438
https://www.exploit-db.com/exploits/6583
http://www.securityfocus.com/bid/31428
https://exchange.xforce.ibmcloud.com/vulnerabilities/45438
https://www.exploit-db.com/exploits/6583