CVE-2010-4332

Pangramsoft Pointter Php Content Mana... - Authentication Bypass

Title source: rule

Description

Pointter PHP Content Management System 1.0 allows remote attackers to bypass authentication and obtain administrative privileges via arbitrary values of the auser and apass cookies.

Exploits (1)

exploitdb WORKING POC

by Mark Stanislav · textwebappsphp

https://www.exploit-db.com/exploits/15740

View Code ZIP pw:eip

References (4)

[Third Party Advisory] http://secunia.com/advisories/42662

[Exploit] http://www.exploit-db.com/exploits/15740

[Exploit] http://www.uncompiled.com/2010/12/pointter-php-content-management-system-unauthorized-privilege-escalation-cve-2010-4332/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/515314/100/0/threaded

Scores

EPSS 0.0269

EPSS Percentile 85.7%

Classification

CWE

CWE-287

Status draft

Affected Products (1)

pangramsoft/pointter_php_content_management_system

Timeline

Published Dec 22, 2010

Tracked Since Feb 18, 2026