← back
CVE-2004-2066

CVE-2004-2066

EPSS 1.4%
SQL injection vulnerability in session.php in LinPHA 0.9.4 allows remote attackers to execute arbitrary SQL code and bypass authentication via the (1) linpha_userid or (2) linpha_password cookies.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=109112246805277&w=2http://secunia.com/advisories/12189https://exchange.xforce.ibmcloud.com/vulnerabilities/16834http://www.osvdb.org/8272http://www.securityfocus.com/bid/10827