7.1 High
AI Score
Confidence
Low
0.011 Low
EPSS
Percentile
84.3%
OTManager CMS 2.4 allows remote attackers to bypass authentication and gain administrator privileges by setting the ADMIN_Hora, ADMIN_Logado, and ADMIN_Nome cookies to certain values, as reachable in Admin/index.php.
www.securityfocus.com/bid/29999
www.exploit-db.com/exploits/5959