CVE-2008-5708
N/A
N/A
Summary
redirect.php in SlimCMS 1.0.0 does not require authentication, which allows remote attackers to create administrative users by using the newusername and newpassword parameters and setting the newisadmin parameter to 1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45824
- http://securityreason.com/securityalert/4804
- https://www.exploit-db.com/exploits/6729
- http://www.securityfocus.com/bid/31736
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45824
- http://securityreason.com/securityalert/4804
- https://www.exploit-db.com/exploits/6729
- http://www.securityfocus.com/bid/31736
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.