CVE Vulnerabilities

CVE-2008-4600

Published: Oct 18, 2008 | Modified: Sep 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

configure.php in PokerMax Poker League Tournament Script 0.13 allows remote attackers to bypass authentication and gain administrative access by setting the ValidUserAdmin cookie.

Affected Software

Name Vendor Start Version End Version
Pokermax_poker_league_tournament_script Steve_dawson 0.13 0.13

References