CVE-2006-0182
login.php in ACal Calendar Project 2.2.5 allows remote attackers to bypass authentication by setting the ACalAuthenticate cookie variable to "inside".
Date published : 2006-01-12
http://www.securityfocus.com/archive/1/421744/100/0/threaded