CVE-2008-2044
netOffice Dwins 1.3 p2 is affected by an authentication bypass vulnerability tied to the demoSession parameter. The code compares the demoSession value to the string 'true' instead of the boolean true, enabling remote attackers to set the parameter to 1 and bypass login. The NASL/NVD entries note...