3 matches found
CVE-2013-2499
SimpleHRM 2.3 and earlier could allow remote attackers to bypass the authentication process in 'usermanager.php' via spoofing a cookie...
CVE-2013-2499
SimpleHRM 2.3 and earlier could allow remote attackers to bypass the authentication process in 'usermanager.php' via spoofing a cookie...
CVE-2013-2499
CVE-2013-2499 affects SimpleHRM 2.3 and earlier. The vulnerability is an authentication bypass where remote attackers can bypass login in the file user_manager.php by spoofing a cookie. The description explicitly states the root cause as cookie spoofing enabling bypass of authentication, which co...