Bizdesign : Security Vulnerabilities, CVEs, Published In 2002 (Denial of service)
The default configuration of BizDesign ImageFolio 2.23 through 2.26 does not control access to (1) admin/setup.cgi, which allows remote attackers to create an administrative account, or (2) admin/nph-build.cgi, which allows remote attackers to cause a denial of service (CPU consumption).
Max CVSS
7.5
EPSS Score
1.04%
Published
2002-12-31
Updated
2016-10-18
1 vulnerabilities found