Vulnerabilities > CVE-2002-0589 - Unspecified vulnerability in Steve Korbett Pvote
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
PVote before 1.9 allows remote attackers to change the administrative password and gain privileges by directly calling ch_info.php with the newpass and confirm parameters both set to the new password.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |
Exploit-Db
description | PVote 1.0/1.5 Unauthorized Administrative Password Change Vulnerability. CVE-2002-0589. Webapps exploit for php platform |
id | EDB-ID:21397 |
last seen | 2016-02-02 |
modified | 2002-04-18 |
published | 2002-04-18 |
reporter | Daniel Nyström |
source | https://www.exploit-db.com/download/21397/ |
title | PVote 1.0/1.5 Unauthorized Administrative Password Change Vulnerability |