Vulnerability Database

296,335

Total vulnerabilities in the database

CVE-2008-2134

The Journal module in Tru-Zone Nuke ET 3.x allows remote attackers to obtain access to arbitrary user accounts, and alter or delete data, via a modified username in an unspecified cookie.

  • Published: May 9, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-2134
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
tru-zone / nukeet 3.4 3.4.x
tru-zone / nukeet 3.3 3.3.x
tru-zone / nukeet 3.2 3.2.x
tru-zone / nukeet 3.9 3.9.x
tru-zone / nukeet 3.0 3.0.x
tru-zone / nukeet 3.1 3.1.x