CVE-2020-8510

2020-02-03T15:15:00
ID CVE-2020-8510
Type cve
Reporter cve@mitre.org
Modified 2020-02-06T17:43:00

Description

An issue was discovered in phpABook 0.9 Intermediate. On the login page, if one sets a userInfo cookie with the value of admin+1+en (user+perms+lang), one can login as any user without a password.