CVE-2008-0350 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2008-0350

CWE

https://cwe.mitre.org/data/definitions/264.html

admin/index.php in Evilsentinel 1.0.9 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to gain administrative privileges and make arbitrary configuration changes.

Affected Software

Name	Vendor	Start Version	End Version
Evilsentinel	Evilsentinel	*	1.0.9 (including)

References

http://evilsentinel.altervista.org/forum/index.php?topic=49.0
http://secunia.com/advisories/28427
http://www.securityfocus.com/bid/27227
https://www.exploit-db.com/exploits/4884
http://evilsentinel.altervista.org/forum/index.php?topic=49.0
http://secunia.com/advisories/28427
http://www.securityfocus.com/bid/27227
https://www.exploit-db.com/exploits/4884