admin.php in SmartSiteCMS 1.0 allows remote malicious users to bypass authentication and gain administrator privileges by setting the userName cookie.
smartsitecms smartsitecms 1.0