2008-10-23 17:00:00
mitre
PUBLISHED
BbZL.PhP 0.92 allows remote attackers to bypass authentication and gain administrative access by setting the phorum_admin_session cookie to 1.