CVE-2008-6523
The CVE-2008-6523 issue affects openInvoice 0.90 beta and earlier where auth.php allows remote authentication bypass by setting the oiauth cookie, enabling privilege gain. The note indicates this can be combined with a separate vulnerability in resetpass.php to modify passwords for arbitrary user...