Security Advisory

CVE-2010-1136

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-03-26 21:00:00

Last updated 2024-08-07 01:14:05

Assigner mitre

State PUBLISHED

Description

The Standard Remember method in TikiWiki CMS/Groupware 3.x before 3.5 allows remote attackers to bypass access restrictions related to "persistent login," probably due to the generation of predictable cookies based on the IP address and User agent in userslib.php.

← Browse all CVEs View on cve.org ↗