CVE-2009-4927

2010-07-0917:00:00

mitre

www.cve.org

7.1 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.8%

JSON

WB News 2.1.2 allows remote attackers to bypass authentication and gain administrative access via a modified WBNEWS cookie, as demonstrated by setting this cookie to 1.

References

secunia.com/advisories/34822

www.exploit-db.com/exploits/8492

www.securityfocus.com/bid/34609