Security Advisory

CVE-2020-8510

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-03 15:00:40

Last updated 2024-08-04 10:03:46

Assigner mitre

State PUBLISHED

Description

An issue was discovered in phpABook 0.9 Intermediate. On the login page, if one sets a userInfo cookie with the value of admin+1+en (user+perms+lang), one can login as any user without a password.

← Browse all CVEs View on cve.org ↗