CVE-2008-6228

Pre Multi-Vendor Shopping Malls allows remote attackers to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
preprojectpre_multi-vendor_shopping_malls
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.vupen.com/english/advisories/2008/3018
https://exchange.xforce.ibmcloud.com/vulnerabilities/46388
https://www.exploit-db.com/exploits/6999
http://www.vupen.com/english/advisories/2008/3018
https://exchange.xforce.ibmcloud.com/vulnerabilities/46388
https://www.exploit-db.com/exploits/6999