CVE-2008-6231

EPSS 2.9%

Pre Classified Listing PHP allows remote attackers to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".

Affected products

n/a · n/a

public PoCs found — 2

cve_referencewww.exploit-db.com/exploits/7000unverified exploitdbwww.exploit-db.com/exploits/6998unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/32557 https://exchange.xforce.ibmcloud.com/vulnerabilities/46390 https://www.exploit-db.com/exploits/7000 http://www.securityfocus.com/bid/32126 http://www.vupen.com/english/advisories/2008/3019