cookie_gen.php in ar web content manager (AWCM) 2.2 does not require authentication, which allows remote malicious users to generate arbitrary cookies via the name parameter in conjunction with the content parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
awcm-cms ar web content manager 2.2 |