CVE-2008-0350

admin/index.php in Evilsentinel 1.0.9 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to gain administrative privileges and make arbitrary configuration changes.

Date published : 2008-01-17

http://www.securityfocus.com/bid/27227

http://evilsentinel.altervista.org/forum/index.php?topic=49.0