CVE-2008-4714

2008-10-2317:00:00

mitre

www.cve.org

AI Score

7.2

Confidence

Low

EPSS

0.017

Percentile

87.7%

JSON

Atomic Photo Album 1.1.0 pre4 does not properly handle the apa_cookie_login and apa_cookie_password cookies, which probably allows remote attackers to bypass authentication and gain administrative access via modified cookies.

References

securityreason.com/securityalert/4497

www.securityfocus.com/bid/31427

www.exploit-db.com/exploits/6580