CVE-2004-2066
CVE-2004-2066 affects LinPHA 0.9.4, where a flaw in session.php enables SQL injection via the linpha_userid or linpha_password cookies, allowing remote attackers to execute arbitrary SQL and bypass authentication. The vulnerability’s impact is described as partial confidentiality, integrity, and ...