Accscripts » Acc Php Email : Security Vulnerabilities, CVEs, CVSS score >= 1
Cross-site request forgery (CSRF) vulnerability in index.php in Acc PHP eMail 1.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords.
Max CVSS
6.8
EPSS Score
0.32%
Published
2010-06-25
Updated
2010-06-28
Acc PHP eMail 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the NEWSLETTERLOGIN cookie to "admin".
Max CVSS
7.5
EPSS Score
1.86%
Published
2009-02-26
Updated
2017-09-29
2 vulnerabilities found