← CVECheck
HomeVulnerabilities

CVE-2002-0584 — MEDIUM severity vulnerability (WorkforceROI Xpede 4.1 allows remote attackers to read user)

WorkforceROI Xpede 4.1 allows remote attackers to read user timesheets by modifying the TSN ID parameter to the ts_app_process.asp script, which is easily guessable because it is incremented by 1 for each new timesheet.

CVE IDCVE-2002-0584
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2002-06-18
Last modified2026-04-16
DescriptionWorkforceROI Xpede 4.1 allows remote attackers to read user timesheets by modifying the TSN ID parameter to the ts_app_process.asp script, which is easily guessable because it is incremented by 1 for each new timesheet.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →