← CVECheck
HomeVulnerabilities

CVE-2002-0589 — HIGH severity vulnerability (PVote before 1.9 allows remote attackers to change the admin)

PVote before 1.9 allows remote attackers to change the administrative password and gain privileges by directly calling ch_info.php with the newpass and confirm parameters both set to the new password.

CVE IDCVE-2002-0589
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-06-18
Last modified2026-04-16
DescriptionPVote before 1.9 allows remote attackers to change the administrative password and gain privileges by directly calling ch_info.php with the newpass and confirm parameters both set to the new password.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →