Vulnerability Details CVE-2008-3268
Unspecified vulnerability in phpScheduleIt 1.2.0 through 1.2.9, when useLogonName is enabled, allows remote attackers with administrator email address knowledge to bypass restrictions and gain privileges via unspecified vectors related to login names. NOTE: some of these details are obtained from third party information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 57.4%
CVSS Severity
CVSS v2 Score 6.8
References
- http://secunia.com/advisories/31147
- http://sourceforge.net/project/shownotes.php?release_id=614202
- http://www.securityfocus.com/bid/30300
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43900
- http://secunia.com/advisories/31147
- http://sourceforge.net/project/shownotes.php?release_id=614202
- http://www.securityfocus.com/bid/30300
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43900
Products affected by CVE-2008-3268
-
cpe:2.3:a:brickhost:phpscheduleit:1.2.0
-
cpe:2.3:a:brickhost:phpscheduleit:1.2.1
-
cpe:2.3:a:brickhost:phpscheduleit:1.2.2
-
cpe:2.3:a:brickhost:phpscheduleit:1.2.3
-
cpe:2.3:a:brickhost:phpscheduleit:1.2.4
-
cpe:2.3:a:brickhost:phpscheduleit:1.2.5
-
cpe:2.3:a:brickhost:phpscheduleit:1.2.6
-
cpe:2.3:a:brickhost:phpscheduleit:1.2.7
-
cpe:2.3:a:brickhost:phpscheduleit:1.2.9