INDEXU 2.0 beta and earlier allows remote attackers to bypass authentication and gain privileges by setting the cookie_admin_authenticated cookie value to 1.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Indexu | Sentraweb | 1.0 (including) | 1.0 (including) |
Indexu | Sentraweb | 1.1 (including) | 1.1 (including) |
Indexu | Sentraweb | 2.0beta (including) | 2.0beta (including) |