2009-04-28 16:00:00
mitre
PUBLISHED
login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain access to an arbitrary account by setting the logged_in cookie to that accounts username.