3 matches found
CVE-2003-0588
admin.php in Digi-news 1.1 allows remote attackers to bypass authentication via a cookie with the username set to the name of the administrator, which satisfies an improper condition in admin.php that does not require a correct password...
CVE-2003-0588
CVE-2003-0588 affects Digi-news 1.1. The vulnerability is an authentication bypass in admin.php: a crafted cookie whose username equals the administrator’s name satisfies an improper condition and does not require a correct password. This allows remote attackers to gain admin access without valid...
CVE-2003-0588
admin.php in Digi-news 1.1 allows remote attackers to bypass authentication via a cookie with the username set to the name of the administrator, which satisfies an improper condition in admin.php that does not require a correct password...