Unrated severityNVD Advisory· Published Aug 31, 2001· Updated Apr 16, 2026
CVE-2001-0995
CVE-2001-0995
Description
PHProjekt before 2.4a allows remote attackers to perform actions as other PHProjekt users by modifying the ID number in an HTTP request to PHProjekt CGI programs.
Affected products
7cpe:2.3:a:phpprojekt:phpprojekt:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:phpprojekt:phpprojekt:*:*:*:*:*:*:*:*range: <=2.4a
- cpe:2.3:a:phpprojekt:phpprojekt:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:phpprojekt:phpprojekt:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:phpprojekt:phpprojekt:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:phpprojekt:phpprojekt:2.1a:*:*:*:*:*:*:*
- cpe:2.3:a:phpprojekt:phpprojekt:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:phpprojekt:phpprojekt:2.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.securityfocus.com/archive/1/210349nvdPatchVendor Advisory
- www.securityfocus.com/bid/3239nvdPatchVendor Advisory
- www.phprojekt.com/ChangeLognvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/7035nvd
News mentions
0No linked articles in our index yet.