CVE-2003-0588

2003-08-18T04:00:00
ID CVE-2003-0588
Type cve
Reporter cve@mitre.org
Modified 2016-10-18T02:35:00

Description

admin.php in Digi-news 1.1 allows remote attackers to bypass authentication via a cookie with the username set to the name of the administrator, which satisfies an improper condition in admin.php that does not require a correct password.