ID | CVE-2008-2524 | ||||||
Sažetak | BlogPHP 2.0 allows remote attackers to bypass authentication, and post (1) messages or (2) comments as an arbitrary user, via a modified blogphp_username field in a cookie. | ||||||
Reference | |||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:L/Au:N/C:N/I:P/A:N | ||||||
Zadnje važnije ažuriranje | 08-08-2017 - 01:31 | ||||||
Objavljeno | 03-06-2008 - 15:32 |