login.php in PhpAddEdit 1.3 allows remote malicious users to bypass authentication and gain administrative access by setting the addedit cookie parameter.
-------------------------------------
PhpAddEdit 13 Login By Pass
-------------------------------------
Found By: x0r ( Evolution Team )
Email: andry2000@hotmailit
-------------------------------------
Bug In: Addedit-loginphp
if (!$login_error) {
// --- Set admin cookie so favorite form field will show up when I use
the site
i ...