CVE-2008-4714

Atomic Photo Album 1.1.0 pre4 does not properly handle the apa_cookie_login and apa_cookie_password cookies, which probably allows remote attackers to bypass authentication and gain administrative access via modified cookies.
Configurations

Configuration 1

cpe:2.3:a:atomic_photo_album:atomic_photo_album:1.1.0:pre4:*:*:*:*:*:*

Information

Published : 2008-10-23 05:17

Updated : 2017-09-29 01:32


NVD link : CVE-2008-4714

Mitre link : CVE-2008-4714

Products Affected
No products.
CWE