Asp Project Management 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting the crypt cookie to 1.
asp-project asp-project 1.0