Description
profile.php in Silent Storm Portal 2.1 and 2.2 allows remote attackers to gain privileges by setting the mail parameter to 1, which is the value for an administrator.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by CHT Security Research · textwebappsphp
https://www.exploit-db.com/exploits/565
References (5)
Core 5
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/11284
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1011470
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17555
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109655763808924&w=2
Exploit third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/12704
Scores
EPSS
0.0571
EPSS Percentile
90.5%
Details
Status
published
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026