CVE-2008-6118

win/content/upload.php in Goople CMS 1.7 allows remote attackers to bypass authentication and gain administrative access by setting the loggedin cookie to 1.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 82%
VendorProductVersion
goople_cmsgoople_cms
1.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/32819
http://www.securityfocus.com/bid/32437
http://www.vupen.com/english/advisories/2008/3235
https://exchange.xforce.ibmcloud.com/vulnerabilities/46799
https://www.exploit-db.com/exploits/7205
http://secunia.com/advisories/32819
http://www.securityfocus.com/bid/32437
http://www.vupen.com/english/advisories/2008/3235
https://exchange.xforce.ibmcloud.com/vulnerabilities/46799
https://www.exploit-db.com/exploits/7205