Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 02/04/2009 Updated: 29/09/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

login.php in PhpAddEdit 1.3 allows remote malicious users to bypass authentication and gain administrative access by setting the addedit cookie parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
phpaddedit phpaddedit 1.3

------------------------------------- PhpAddEdit 13 Login By Pass ------------------------------------- Found By: x0r ( Evolution Team ) Email: andry2000@hotmailit ------------------------------------- Bug In: Addedit-loginphp if (!$login_error) { // --- Set admin cookie so favorite form field will show up when I use the site i ...

CWE-287 http://www.securityfocus.com/bid/32779 http://secunia.com/advisories/33124 http://www.phpaddedit.com/page/new/http://osvdb.org/50674 https://exchange.xforce.ibmcloud.com/vulnerabilities/47264 https://www.exploit-db.com/exploits/7418 https://nvd.nist.gov https://www.exploit-db.com/exploits/7418/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-6581

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect