Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2002-1058

Directory traversal vulnerability in splashAdmin.php for Cobalt Qube 3.0 allows local users and remote attackers, to gain privileges as the Qube Admin via .. (dot dot) sequences in the sessionId cookie that point to an alternate session file.

  • Published: Oct 4, 2002
  • Updated: Apr 13, 2023
  • CVE: CVE-2002-1058
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
cobalt / qube 3.0 3.0.x