CVE-2008-4600

2008-10-1722:00:00

mitre

www.cve.org

AI Score

7.1

Confidence

Low

EPSS

0.037

Percentile

91.9%

JSON

configure.php in PokerMax Poker League Tournament Script 0.13 allows remote attackers to bypass authentication and gain administrative access by setting the ValidUserAdmin cookie.

References

secunia.com/advisories/32312

securityreason.com/securityalert/4431

www.securityfocus.com/bid/31784

exchange.xforce.ibmcloud.com/vulnerabilities/45931

www.exploit-db.com/exploits/6766