CVE-2008-5296

2008-12-01T15:30:00
ID CVE-2008-5296
Type cve
Reporter cve@mitre.org
Modified 2017-08-08T01:33:00

Description

Gallery 1.5.x before 1.5.10 and 1.6 before 1.6-RC3, when register_globals is enabled, allows remote attackers to bypass authentication and gain administrative via unspecified cookies. NOTE: some of these details are obtained from third party information.