CVE-2009-1739

2009-05-2019:00:00

mitre

www.cve.org

7.2 High

AI Score

Confidence

Low

0.043 Low

EPSS

Percentile

92.4%

JSON

PAD Site Scripts 3.6 allows remote attackers to bypass authentication and gain privileges as other users, including administrative privileges, by setting the authuser cookie parameter to a valid username.

References

osvdb.org/54593

secunia.com/advisories/35155

www.securityfocus.com/bid/35027

exchange.xforce.ibmcloud.com/vulnerabilities/50622

www.exploit-db.com/exploits/8735