CVE-2010-4215

EUVD-2010-4189
UI/Manage.pm in Foswiki 1.1.0 and 1.1.1 allows remote authenticated users to gain privileges by modifying the GROUP and ALLOWTOPICCHANGE preferences in the topic preferences for Main.AdminGroup.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
Affected Products (NVD)
VendorProductVersion
foswikifoswiki
1.1.0
foswikifoswiki
1.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://foswiki.org/Support/SecurityAlertCVE20104215
http://secunia.com/advisories/42275
http://sourceforge.net/mailarchive/message.php?msg_name=4CD9F6F5.4030204%40lavrsen.dk
http://www.securityfocus.com/bid/44858
https://exchange.xforce.ibmcloud.com/vulnerabilities/63253
http://foswiki.org/Support/SecurityAlertCVE20104215
http://secunia.com/advisories/42275
http://sourceforge.net/mailarchive/message.php?msg_name=4CD9F6F5.4030204%40lavrsen.dk
http://www.securityfocus.com/bid/44858
https://exchange.xforce.ibmcloud.com/vulnerabilities/63253