Accscripts Acc Statistics vulnerabilities
2 known vulnerabilities affecting accscripts/acc_statistics.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-6294P3HIGHCVSS 7.5PoCv1.12009-02-26
CVE-2008-6294 [HIGH] CWE-264 CVE-2008-6294: admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain admi
admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie cookie to "admin."
nvd
CVE-2009-4905P4MEDIUMCVSS 6.8PoCv1.12010-06-25
CVE-2009-4905 [MEDIUM] CWE-352 CVE-2009-4905: Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow
Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses.
nvd