Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 10/07/2007 Updated: 15/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

The isloggedin function in Php/login.inc.php in phpTrafficA 1.4.3 and previous versions allows remote malicious users to bypass authentication and obtain administrative access by setting the username cookie to "traffic." NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
zoneo-soft phptraffica 1.4.3
zoneo-soft phptraffica 1.4
zoneo-soft phptraffica 1.4.2

NVD-CWE-Other http://corryl.altervista.org/index.php?mod=read&id=1183748959 http://secunia.com/advisories/25976 http://www.securityfocus.com/bid/24823 http://securityreason.com/securityalert/2870 http://osvdb.org/37477 https://exchange.xforce.ibmcloud.com/vulnerabilities/35290 http://www.securityfocus.com/archive/1/473041/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-3647

Vulnerability Summary

References

Vulmon Search

About

Products

Connect