CVE-2008-1904

Cicoandcico CcMail 1.0.1 and earlier does not verify that the this_cookie cookie corresponds to an authenticated session, which allows remote attackers to obtain access to the "admin area" via a modified this_cookie cookie.
Configurations

Configuration 1

cpe:2.3:a:cicoandcico:ccmail:1.0:*:*:*:*:*:*:*
cpe:2.3:a:cicoandcico:ccmail:*:*:*:*:*:*:*:*

Information

Published : 2008-04-22 04:41

Updated : 2017-09-29 01:30


NVD link : CVE-2008-1904

Mitre link : CVE-2008-1904

Products Affected
No products.
CWE