Pvote
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2002-0589 | 0.04 | — | 0.07 | Jun 18, 2002 | PVote before 1.9 allows remote attackers to change the administrative password and gain privileges by directly calling ch_info.php with the newpass and confirm parameters both set to the new password. | |||
| CVE-2002-0588 | 0.04 | — | 0.07 | Jun 18, 2002 | PVote before 1.9 does not authenticate users for restricted operations, which allows remote attackers to add or delete polls by modifying parameters to (1) add.php or (2) del.php. |
- CVE-2002-0589Jun 18, 2002risk 0.04cvss —epss 0.07
PVote before 1.9 allows remote attackers to change the administrative password and gain privileges by directly calling ch_info.php with the newpass and confirm parameters both set to the new password.
- CVE-2002-0588Jun 18, 2002risk 0.04cvss —epss 0.07
PVote before 1.9 does not authenticate users for restricted operations, which allows remote attackers to add or delete polls by modifying parameters to (1) add.php or (2) del.php.