CVE-2006-0844
Leif M. Wright's Blog 3.5 is affected by an authentication bypass through cookie handling. The vulnerability arises because the blog.cgi script does not perform a password comparison when identifying an administrator via the blogAdmin cookie, enabling remote attackers to bypass login authenticati...