CVE-2010-4332

Pangramsoft Pointter Php Content Mana... - Authentication Bypass

Title source: rule

Description

Pointter PHP Content Management System 1.0 allows remote attackers to bypass authentication and obtain administrative privileges via arbitrary values of the auser and apass cookies.

Exploits (1)

exploitdb WORKING POC

by Mark Stanislav · textwebappsphp

https://www.exploit-db.com/exploits/15740

View Code ZIP pw:eip

References (4)

Core 4

Core References

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/15740

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/42662

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/515314/100/0/threaded

Exploit x_refsource_misc

http://www.uncompiled.com/2010/12/pointter-php-content-management-system-unauthorized-privilege-escalation-cve-2010-4332/

Scores

EPSS 0.0230

EPSS Percentile 84.8%

Details

CWE

CWE-287

Status published

Products (1)

pangramsoft/pointter_php_content_management_system 1.0

Published Dec 22, 2010

Tracked Since Feb 18, 2026