CVE-2008-2524
BlogPHP 2.0 contains an authentication bypass vulnerability where a remote attacker can set a modified blogphp_username cookie to post messages or comments as an arbitrary user. Root cause: cookie field manipulation bypasses login checks. Affected product: BlogPHP 2.0. Practical impact: unauthori...