CVE-2006-7014
admin.php in BloggIT 1.01 and earlier does not properly establish a user session, which allows remote attackers to gain privileges via a direct request.
Date published : 2007-02-14
http://www.securityfocus.com/archive/1/436259/30/4620/threaded