Postnuke Software Foundation : Security Vulnerabilities, CVEs, Published In November 2001
PHP-Nuke 5.1 stores user and administrator passwords in a base-64 encoded cookie, which could allow remote attackers to gain privileges by stealing or sniffing the cookie and decoding it.
Max CVSS
7.5
EPSS Score
1.14%
Published
2001-11-21
Updated
2017-12-19
1 vulnerabilities found