Vulnerabilities > CVE-2005-2489 - Unspecified vulnerability in web Content Management web Content Management News System

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

web-content-management

NVD

Published: 2005-08-07

Updated: 2017-07-11

Summary

Web Content Management News System allows remote attackers to create arbitrary accounts and gain privileges via a direct request to Admin/Users/AddModifyInput.php.

Vulnerable Configurations

Part	Description	Count
Application	Web_Content_Management WEB Content Management WEB Content Management News System *	1

References

http://secunia.com/advisories/16317
http://securitytracker.com/id?1014616
http://www.osvdb.org/18524
http://www.rgod.altervista.org/webc.html
http://www.securityfocus.com/bid/14465
https://exchange.xforce.ibmcloud.com/vulnerabilities/21694