The isLoggedIn function in fastnews-code.php in phpFastNews 1.0.0 allows remote attackers to bypass authentication and gain administrative access by setting the fn-loggedin cookie to 1.
References
Configurations
History
No history.
Information
Published : 2008-10-21 01:18
Updated : 2023-12-10 10:51
NVD link : CVE-2008-4622
Mitre link : CVE-2008-4622
CVE.ORG link : CVE-2008-4622
JSON object : View
Products Affected
phpfastnews
- phpfastnews
CWE
CWE-287
Improper Authentication