Aggregates CVE and security vulnerability intelligence across all accscripts-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk csrf and related security problems, affecting vendor surface software deployment and vendor surface production workloads scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2009-4906 | Cross-site request forgery (CSRF) vulnerability in index.php in Acc PHP eMail 1.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords. | [email protected] | 6.8 | 1.07% | 2010-06-25 | 2026-04-29 |
| CVE-2009-4905 | Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses. | [email protected] | 6.8 | 0.94% | 2010-06-25 | 2026-04-29 |
| CVE-2008-6294 | admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie cookie to "admin." | [email protected] | 7.5 | 2.74% | 2009-02-26 | 2026-04-23 |
| CVE-2008-6293 | admin/Index.php in Acc Real Estate 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie to "admin." | [email protected] | 7.5 | 2.74% | 2009-02-26 | 2026-04-23 |
| CVE-2008-6292 | Acc Autos 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the (1) username_cookie to "admin," (2) right_cookie to "1," and (3) id_cookie to "1." | [email protected] | 7.5 | 2.74% | 2009-02-26 | 2026-04-23 |
| CVE-2008-6291 | Acc PHP eMail 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the NEWSLETTERLOGIN cookie to "admin". | [email protected] | 7.5 | 2.45% | 2009-02-26 | 2026-04-23 |