Accscripts Acc Php Email vulnerabilities
2 known vulnerabilities affecting accscripts/acc_php_email.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-6291P3HIGHCVSS 7.5PoCv1.12009-02-26
CVE-2008-6291 [HIGH] CWE-264 CVE-2008-6291: Acc PHP eMail 1.1 allows remote attackers to bypass authentication and gain administrative access by
Acc PHP eMail 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the NEWSLETTERLOGIN cookie to "admin".
nvd
CVE-2009-4906P4MEDIUMCVSS 6.8PoCv1.12010-06-25
CVE-2009-4906 [MEDIUM] CWE-352 CVE-2009-4906: Cross-site request forgery (CSRF) vulnerability in index.php in Acc PHP eMail 1.1 allows remote atta
Cross-site request forgery (CSRF) vulnerability in index.php in Acc PHP eMail 1.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords.
nvd