CVE-2011-5253

EUVD-2011-5152
Dl Download Ticket Service 0.3 through 0.9 allows remote attackers to login as an arbitrary user by supplying an authorization header.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 51%
Affected Products (NVD)
VendorProductVersion
thegrdl
0.3
thegrdl
0.4
thegrdl
0.5
thegrdl
0.6
thegrdl
0.7
thegrdl
0.8
thegrdl
0.9
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/47466
http://www.securityfocus.com/bid/51347
http://www.thregr.org/~wavexx/software/dl/NEWS.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/72252
http://secunia.com/advisories/47466
http://www.securityfocus.com/bid/51347
http://www.thregr.org/~wavexx/software/dl/NEWS.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/72252