2007-02-15 02:00:00
mitre
PUBLISHED
admin.php in BloggIT 1.01 and earlier does not properly establish a user session, which allows remote attackers to gain privileges via a direct request.