Vulnerabilities > CVE-2002-1427 - Unspecified vulnerability in Easy Scripts Archive products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
easy-scripts-archive
exploit available
NVD
Published: 2003-04-11
Updated: 2008-09-05

Summary

The print_html_to_file function in edit.cgi for Easy Homepage Creator 1.0 does not check user credentials, which allows remote attackers to modify home pages of other users.

Vulnerable Configurations

Part Description Count
Application
Easy_Scripts_Archive
2

Exploit-Db

descriptionBen Chivers Easy Homepage Creator 1.0 File Modification Vulnerability. CVE-2002-1427 . Webapps exploit for cgi platform
idEDB-ID:21658
last seen2016-02-02
modified2002-07-29
published2002-07-29
reporterArek Suroboyo
sourcehttps://www.exploit-db.com/download/21658/
titleBen Chivers Easy Homepage Creator 1.0 File Modification Vulnerability

References