Alguest 1.1 - Multiple Cookie Authentication Bypass Vulnerabilities

EDB-ID:

35044

CVE:

N/A




Platform:

PHP

Date:

2010-12-03


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

source: https://www.securityfocus.com/bid/45175/info

Alguest is prone to multiple authentication-bypass vulnerabilities.

Attackers can exploit this issue to gain administrative control of the affected application.

Alguest 1.1c-patched is vulnerable; other versions may also be affected. 

The following example input is available:

Cookie: admin=anyvalue