2003-03-18 05:00:00
mitre
PUBLISHED
index.php in dotProject 0.2.1.5 allows remote attackers to bypass authentication via a cookie or URL with the user_cookie parameter set to 1.