2 matches found
CVE-2009-2025
admin/login.php in DM FileManager 3.9.2 allows remote attackers to bypass authentication and gain administrative access by setting the 1 USER, 2 GROUPID, 3 GROUP, and 4 USERID cookies to certain values...
CVE-2009-2025
DM FileManager 3.9.2 is affected by an authentication bypass vulnerability where remote attackers can gain admin access by tampering cookies (USER, GROUPID, GROUP, USERID). The issue is triggered through admin/login.php and leads to partial confidentiality/integrity/availability impacts as per CV...