Vulnerabilities

CVE-2006-3753

by Fred · 20/07/2006

setcookie.php for the administration login in Professional Home Page Tools Guestbook records the hash of the administrator password in a cookie, which allows attackers to conduct brute force password guessing attacks after obtaining the hash.

Date published : 2006-07-20

http://www.securityfocus.com/archive/1/440421/100/0/threaded

http://artemis.abenteuer-mittelerde.de/pub/adv02-phptgb.txt

Similar

Tags: Cybersecurity Alert