Accscripts » Acc Statistics : Security Vulnerabilities, CVEs,
Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses.
Max CVSS
6.8
EPSS Score
0.35%
Published
2010-06-25
Updated
2010-06-28
admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie cookie to "admin."
Max CVSS
7.5
EPSS Score
0.61%
Published
2009-02-26
Updated
2017-09-29
2 vulnerabilities found