MidnightBSD

Advisories for john_drake

CVE-2002-2335 MEDIUM

Killer Protection 1.0 stores the vars.inc include file under the web root with insufficient access control, which allows remote attackers to obtain user names and passwords and log in using protection.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-16,

Products Affected

Vendor Product Version
john_drake killer_protection 1.0