CVE-2009-0461

EUVD-2009-0465
Whole Hog Password Protect: Enhanced 1.x allows remote attackers to bypass authentication and obtain administrative access via an integer value in the adminid cookie.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
Affected Products (NVD)
VendorProductVersion
wholehogsoftwarepassword_protect
1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/51734
http://secunia.com/advisories/33777
http://www.securityfocus.com/bid/33577
https://www.exploit-db.com/exploits/7952
http://osvdb.org/51734
http://secunia.com/advisories/33777
http://www.securityfocus.com/bid/33577
https://www.exploit-db.com/exploits/7952