← back
CVE-2008-5873

CVE-2008-5873

EPSS 2.7%
Yerba SACphp 6.3 and earlier allows remote attackers to bypass authentication and gain administrative access via a galleta[sesion] cookie that has a value beginning with 1:1: followed by a username.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/6691unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/32093http://securityreason.com/securityalert/4883https://exchange.xforce.ibmcloud.com/vulnerabilities/45734https://www.exploit-db.com/exploits/6691http://www.securityfocus.com/bid/31619