CVE-2003-1245

index2.php in Mambo 4.0.12 allows remote attackers to gain administrator access via a URL request where session_id is set to the MD5 hash of a session cookie.

Date published : 2005-11-16

http://www.securityfocus.com/bid/6926

http://archives.neohapsis.com/archives/bugtraq/2003-02/0302.html