Vulnerabilities > CVE-2002-0584 - Unspecified vulnerability in Workforceroi Xpede 4.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
WorkforceROI Xpede 4.1 allows remote attackers to read user timesheets by modifying the TSN ID parameter to the ts_app_process.asp script, which is easily guessable because it is incremented by 1 for each new timesheet.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |