Vulnerabilities

CVE-2003-0588

by Fred · 17/10/2016

admin.php in Digi-news 1.1 allows remote attackers to bypass authentication via a cookie with the username set to the name of the administrator, which satisfies an improper condition in admin.php that does not require a correct password.

Date published : 2016-10-17

http://marc.info/?l=bugtraq&m=105839007002993&w=2

Similar

Tags: Cybersecurity Alert