Security Vulnerabilities, CVEs, Published In March 2007 (Gain Privilege) CVSS score >= 7
Creative Guestbook 1.0 allows remote attackers to add an administrative account via a direct request to createadmin.php with Name, Email, and PASSWORD parameters set.
Max CVSS
7.5
EPSS Score
1.10%
Published
2007-03-16
Updated
2017-10-11
webSPELL 4.0, and possibly later versions, allows remote attackers to bypass authentication via a ws_auth cookie, a different vulnerability than CVE-2006-4782.
Max CVSS
10.0
EPSS Score
1.21%
Published
2007-03-02
Updated
2018-10-16
2 vulnerabilities found