Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6581

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6581
Last Modified 02 Apr 2009 12:00:00
Published 02 Apr 2009 11:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6581

Summary

login.php in PhpAddEdit 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the addedit cookie parameter.

Vulnerable Systems

Application

  • Phpaddedit 1.3


References

CONFIRM - http://www.phpaddedit.com/page/new/

XF - phpaddedit-adminuser-cookie-security-bypass(47264)

BID - 32779

MILW0RM - 7418

SECUNIA - 33124

OSVDB - 50674


Last Updated: 27 May 2016 10:49:14