CVE-2009-2382

2009-07-0815:00:00

mitre

www.cve.org

9.8 High

AI Score

Confidence

High

0.025 Low

EPSS

Percentile

90.1%

JSON

admin.php in phpMyBlockchecker 1.0.0055 allows remote attackers to bypass authentication and gain administrative access by setting the PHPMYBCAdmin cookie to LOGGEDIN.

References

osvdb.org/55505

secunia.com/advisories/35660

www.exploit-db.com/exploits/9053

exchange.xforce.ibmcloud.com/vulnerabilities/51445