2005-03-03 05:00:00
mitre
PUBLISHED
sessions.php in phpBB 2.0.12 and earlier allows remote attackers to gain administrator privileges via the autologinid value in a cookie.