4 matches found
CVE-2020-8510
An issue was discovered in phpABook 0.9 Intermediate. On the login page, if one sets a userInfo cookie with the value of admin+1+en user+perms+lang, one can login as any user without a password...
CVE-2020-8510
An issue was discovered in phpABook 0.9 Intermediate. On the login page, if one sets a userInfo cookie with the value of admin+1+en user+perms+lang, one can login as any user without a password...
CVE-2020-8510
CVE-2020-8510 affects phpABook 0.9 Intermediate. The vulnerability is a login bypass: if a userInfo cookie is set to admin+1+en (user+perms+lang), authentication occurs without a password. Documented impact ranges from Partial confidentiality/integrity/availability to a Critical/High severity per...
CVE-2020-8510
An issue was discovered in phpABook 0.9 Intermediate. On the login page, if one sets a userInfo cookie with the value of admin+1+en user+perms+lang, one can login as any user without a password. Recent assessments: horshark at March 09, 2020 8:27pm UTC reported: CVE in SourceForge project phpABoo...