2 matches found
CVE-2005-1288
inclogincheck.asp ACS Blog 0.8 through 1.1.3 allows remote attackers to gain administrator privileges via the "in" value in a cookie...
CVE-2005-1288
The vulnerability CVE-2005-1288 affects ACS Blog 0.8 through 1.1.3, where attackers can gain administrator privileges by manipulating the value of the in cookie. Affected component: login/authentication flow (inc_login_check.asp). Root cause: insecure cookie handling that allows privilege escalat...