CVE-2009-0412
03.02.2009, 20:30
The ProcessLogin function in class.auth.php in Interspire Shopping Cart (ISC) 4.0.1 Ultimate edition allows remote attackers to bypass authentication and obtain administrative access by reusing the RememberToken cookie after a failed admin login attempt.Enginsight
Vendor | Product | Version |
---|---|---|
interspire | shopping_cart | 4.0.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References