CVE-2008-3317

admin/index.php in Maian Search 1.1 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary search_cookie cookie.

🔗 References (14)

• cve@mitrehttp://secunia.com/advisories/31075
• cve@mitrehttp://securityreason.com/securityalert/4042
• cve@mitrehttp://www.maianscriptworld.co.uk/free-php-scripts/maian-search/development/index.html
• cve@mitrehttp://www.maianscriptworld.co.uk/news.html
• cve@mitrehttp://www.securityfocus.com/bid/30211
• cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/43753
• cve@mitrehttps://www.exploit-db.com/exploits/6066
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/31075
• af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/4042
• af854a3a-2127-422b-91ae-364da2661108http://www.maianscriptworld.co.uk/free-php-scripts/maian-search/development/index.html
• af854a3a-2127-422b-91ae-364da2661108http://www.maianscriptworld.co.uk/news.html
• af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/30211
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/43753
• af854a3a-2127-422b-91ae-364da2661108https://www.exploit-db.com/exploits/6066