Vulnerabilities > Metadot > Metadot Portal Server > 5.6.4.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-12-21 | CVE-2005-4458 | Privilege Escalation vulnerability in MetaDot Portal Server Site_Mgr Group Group.pm in Metadot Portal Server 6.4.4 and earlier does not properly reset the $IS_OWNER, $IS_ADMIN, and $IS_MANAGER global variables when performing checks for special privileges, which allows users to gain administrator privileges by adding themselves to the SITE_MGR group. | 9.0 |