2 matches found
CVE-2006-3772
PHP-Post 0.21 and 1.0, and possibly earlier versions, when auto-login is enabled, allows remote attackers to bypass security restrictions and obtain administrative privileges by modifying the logincookieuser setting in the login cookie...
CVE-2006-3772
The CVE-2006-3772 entry concerns PHP-Post versions 0.21 and 1.0 (and possibly earlier) where, when auto-login is enabled, an attacker can bypass security restrictions and obtain administrative privileges by modifying the logincookie[user] value in the login cookie. The connected sources confirm t...