Vulnerabilities > CVE-2004-0249 - Multiple vulnerability in PHPx 3.2.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
PHPX 2.0 through 3.2.4 allows remote attackers to gain access to other accounts by modifying the cookie's PXL variable to reference another userID.
Exploit-Db
| description | PHPX 3.2.3 Multiple Vulnerabilities. CVE-2004-0249. Webapps exploit for php platform |
| id | EDB-ID:23644 |
| last seen | 2016-02-02 |
| modified | 2004-02-03 |
| published | 2004-02-03 |
| reporter | Manuel L?pez |
| source | https://www.exploit-db.com/download/23644/ |
| title | phpx 3.2.3 - Multiple Vulnerabilities |
References
- http://archives.neohapsis.com/archives/bugtraq/2004-03/0154.html
- http://marc.info/?l=bugtraq&m=107586932324901&w=2
- http://secunia.com/advisories/10797/
- http://www.securityfocus.com/bid/9569
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15052
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15512