login.php in Zenas PaoBacheca Guestbook 2.1, when register_globals is enabled, allows remote malicious users to bypass authentication and gain administrative access by setting the login_ok parameter to 1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zenas pao-bacheca guestbook 2.1 |