Skip to content
High Published: Dec 31, 2002 Modified: Apr 03, 2025

CVE-2002-1800

7.5 CVSS Score High
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Export CVE-2002-1800 Data:
Share:
Link copied!

Description

phpRank 1.8 stores the administrative password in plaintext on the server and in the "ap" cookie, which allows remote attackers to retrieve the administrative password.

CVSS Vector Details

Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability None

Affected Software Configurations

  • a phprank phprank 1.8 * * * * * * *

Weaknesses (CWE)

  • CWE-312

References & External Links

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

Related Vulnerabilities

CVE-2001-1481 CVSS 9.8 Same weakness: CWE-312 CVE-2001-1536 CVSS 7.5 Same weakness: CWE-312 CVE-2001-1537 CVSS 7.5 Same weakness: CWE-312 CVE-2002-1696 CVSS 5.5 Same weakness: CWE-312 CVE-2004-2397 CVSS 7.5 Same weakness: CWE-312

CVE History Timeline

Jul 08, 2005 15:43 Initial Analysis
Feb 10, 2024 03:06 Reanalysis
May 14, 2024 01:22 CVE Modified
Nov 20, 2024 23:42 CVE Modified
← Back to CVE Tracker