CVE-2006-7074

CVE-2006-7074

EPSS 1.5%

admin.php in SmartSiteCMS 1.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the userName cookie.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://marc.info/?l=full-disclosure&m=115510147417471&w=2 http://secunia.com/advisories/20769 https://exchange.xforce.ibmcloud.com/vulnerabilities/28299 http://www.securityfocus.com/bid/19434