Crux Gallery 'index.php' Cookie Authentication Bypass Vulnerability

Crux Gallery is prone to an authentication-bypass vulnerability because it fails to adequately verify user-supplied input used for cookie-based authentication.

An attacker can exploit this vulnerability to gain administrative access to the affected application; other attacks are also possible.

Crux Gallery 1.32 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus