Steve Korbett Pvote vulnerabilities
2 known vulnerabilities affecting steve_korbett/pvote.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2002-0589P3HIGHCVSS 7.5PoCv1.0v1.0a+2 more2002-06-18
CVE-2002-0589 [HIGH] CVE-2002-0589: PVote before 1.9 allows remote attackers to change the administrative password and gain privileges b
PVote before 1.9 allows remote attackers to change the administrative password and gain privileges by directly calling ch_info.php with the newpass and confirm parameters both set to the new password.
nvd
CVE-2002-0588P4MEDIUMCVSS 5.0PoCv1.0v1.0a+2 more2002-06-18
CVE-2002-0588 [MEDIUM] CVE-2002-0588: PVote before 1.9 does not authenticate users for restricted operations, which allows remote attacker
PVote before 1.9 does not authenticate users for restricted operations, which allows remote attackers to add or delete polls by modifying parameters to (1) add.php or (2) del.php.
nvd