2022-02-14 18:35:48
mitre
PUBLISHED
An Incorrect Access Control vulnerability exists in zzcms 8.2, which lets a malicious user bypass authentication by changing the user name in the cookie to use any password.