CVE-2011-3839

EUVD-2011-3796
The administration functionality in Wuzly 2.0 allows remote attackers to bypass authentication by setting the dXNlcm5hbWU cookie.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
Affected Products (NVD)
VendorProductVersion
wuzlywuzly
2.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/77913
http://secunia.com/advisories/46163
http://secunia.com/secunia_research/2011-89/
https://exchange.xforce.ibmcloud.com/vulnerabilities/71905
http://osvdb.org/77913
http://secunia.com/advisories/46163
http://secunia.com/secunia_research/2011-89/
https://exchange.xforce.ibmcloud.com/vulnerabilities/71905