Vulnerabilities (CVE)

Filtered by vendor Surf-net Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-0972 1 Surf-net 1 Asp Forum 2024-02-28 10.0 HIGH N/A
Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remote attackers to gain administrative privileges by calculating the value of the admin cookie (UserID 1), i.e. "0888888."