AGTC MyShop 3.2b allows remote malicious users to bypass authentication and obtain administrative access setting the log_accept cookie to "correcto."
agtc agtc myshop 3.2b