Web application abuses : phpMyFAQ Backdoor Unauthorized Access Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.100948

Categoría: Web application abuses

Título: phpMyFAQ Backdoor Unauthorized Access Vulnerability

Resumen: phpMyFAQ is prone to an unauthorized-access vulnerability due to a backdoor; in certain versions of the application.

Descripción: Summary:
phpMyFAQ is prone to an unauthorized-access vulnerability due to a backdoor
in certain versions of the application.

Vulnerability Impact:
Successful exploits allow remote attackers to execute arbitrary PHP code in
the context of the affected application.

Affected Software/OS:
phpMyFAQ 2.6.11 and 2.6.12 obtained between December 4, 1010, and December 15, 2010
are vulnerable.

Solution:
Updates are available. Please see the references for more information.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-4558
BugTraq ID: 45442
http://www.securityfocus.com/bid/45442
http://secunia.com/advisories/42622
http://www.vupen.com/english/advisories/2010/3254

Copyright Copyright (C) 2010 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.100948
Categoría:	Web application abuses
Título:	phpMyFAQ Backdoor Unauthorized Access Vulnerability
Resumen:	phpMyFAQ is prone to an unauthorized-access vulnerability due to a backdoor; in certain versions of the application.
Descripción:	Summary: phpMyFAQ is prone to an unauthorized-access vulnerability due to a backdoor in certain versions of the application. Vulnerability Impact: Successful exploits allow remote attackers to execute arbitrary PHP code in the context of the affected application. Affected Software/OS: phpMyFAQ 2.6.11 and 2.6.12 obtained between December 4, 1010, and December 15, 2010 are vulnerable. Solution: Updates are available. Please see the references for more information. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4558 BugTraq ID: 45442 http://www.securityfocus.com/bid/45442 http://secunia.com/advisories/42622 http://www.vupen.com/english/advisories/2010/3254
Copyright	Copyright (C) 2010 Greenbone AG