MidnightBSD

Advisories for matthew_redman

CVE-2000-0434 HIGH

The administrative password for the Allmanage web site administration software is stored in plaintext in a file which could be accessed by remote attackers.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
matthew_redman allmanage 2.6
CVE-2000-0435 HIGH

The allmanageup.pl file upload CGI script in the Allmanage Website administration software 2.6 can be called directly by remote attackers, which allows them to modify user accounts or web pages.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
matthew_redman allmanage 2.6