CVE-2002-0584: CVE-2002-0584

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-0584

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

WorkforceROI Xpede 4.1 allows remote attackers to read user timesheets by modifying the TSN ID parameter to the ts_app_process.asp script, which is easily guessable because it is incremented by 1 for each new timesheet.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

WorkforceROI XPede任意时间表泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

XPede是一款基于WEB的项目审核软件，可运行在Microsoft Windows操作系统下。 XPede对用户缺少充分正确的授权检查，可导致远程攻击者获得其他用户时间表信息。由于XPede中的'ets_app_process.asp'脚本对授权信息缺少充分正确的检查，可导致攻击者访问其他用户时间表，获得其他用户时间表信息。此问题存在于XPede 4.1版本中，其他版本也可能存在此漏洞。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-0584

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-0584

Please Login to view more intelligence information

http://www.securityfocus.com/bid/4556vdb-entryx_refsource_BID
http://www.iss.net/security_center/static/8907.phpvdb-entryx_refsource_XF
http://archives.neohapsis.com/archives/bugtraq/2002-04/0273.htmlmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-0584

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2002-0584

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2002-0584

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-0584

III. Intelligence Information for CVE-2002-0584

IV. Related Vulnerabilities

V. Comments for CVE-2002-0584

Leave a comment