CVE-2000-0435

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published May 13, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0435 is a vulnerability affecting the file upload CGI script in the Allmanage Website administration software version 2.6. This issue permits remote attackers to directly call the allmanageup.pl script, granting them the ability to modify user accounts or web pages. This vulnerability poses a significant security risk, as unauthorized modifications could lead to unintended consequences, such as data breaches or unauthorized access. It is recommended that users of this software upgrade to a secure version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlYXX
https://www.cve.org/CVERecord?id=CVE-2000-0435
https://nvd.nist.gov/vuln/detail/CVE-2000-0435

Back to Vulnerability Database

CVE-2000-0435

CVSS 2.0 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations