CVE-2001-1367 Information

Description

The checkAccess function in PHPSlice 0.1.4 and all other versions between 0.1.1 and 0.1.6 does not properly verify the administrative access level which could allow remote attackers to gain privileges.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2001-q3/0005.html http://phpslice.org/comments.php?aid=1031& https://exchange.xforce.ibmcloud.com/vulnerabilities/9649