Security Advisory

CVE-2009-2025

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-06-09 19:00:00

Last updated 2024-08-07 05:36:20

Assigner mitre

State PUBLISHED

Description

admin/login.php in DM FileManager 3.9.2 allows remote attackers to bypass authentication and gain administrative access by setting the (1) USER, (2) GROUPID, (3) GROUP, and (4) USERID cookies to certain values.

← Browse all CVEs View on cve.org ↗