Matthew Redman Allmanage : Security vulnerabilities, CVEs

Copy

CVE-2000-0435

The allmanageup.pl file upload CGI script in the Allmanage Website administration software 2.6 can be called directly by remote attackers, which allows them to modify user accounts or web pages.

Max CVSS

7.5

EPSS Score

1.22%

Published

2000-05-13

Updated

2008-09-10

CVE-2000-0434

The administrative password for the Allmanage web site administration software is stored in plaintext in a file which could be accessed by remote attackers.

Max CVSS

7.5

EPSS Score

0.62%

Published

2000-05-13

Updated

2008-09-10

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!