Vulnerabilities (CVE)

Filtered by vendor Accscripts Subscribe
Filtered by product Acc Statistics
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-4905 1 Accscripts 1 Acc Statistics 2024-11-21 6.8 MEDIUM N/A
Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses.
CVE-2008-6294 1 Accscripts 1 Acc Statistics 2024-11-21 7.5 HIGH N/A
admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie cookie to "admin."