Cloud security intelligence for modern infrastructure.

Stay informed

📬 Product updates & blog posts🛡️ CVE alerts & security advisories

Frequency:

Sent from noreply@echelongraph.io · Unsubscribe anytime

Product

Overview
Enterprise
Agents
AI Analyst
Pricing
Compare
vs. Competitors

Resources

CVE Pulse
Compliance Directory
Newsletter
Documentation
Readiness Calculator
Blog

Security Tools

Surface Scanner
AI Security Index
AI Threat Map
Shadow AI Radar
Shadow Engine Map

Company

Design Partners
Changelog
Contact

Legal

Privacy
Terms
Security
DPA

SOC 2 Type IIISO 27001GDPRHIPAA Ready

Home›CVE Pulse›CVE-2013-7137

CVE-2013-7137

CRITICALCVSS 9.8

9.8

The "remember me" functionality in login.php in Burden before 1.8.1 allows remote attackers to bypass authentication and gain privileges by setting the burden_user_rememberme cookie to 1.

📅 Published

January 26, 2014

🔄 Last Modified

April 29, 2026

📋 Advisory Details (5)

Auto-updated Apr 30, 2026

🔬 Proof of concept available. No patch confirmed yet.

generic

Burden 1.8 Security Vulnerability Notification · Issue #2 · joshf/Burden · GitHub

https://github.com/joshf/Burden/issues/2

generic

Remove remember me until i can think of a better solution. Closes #2 · joshf/Burden@edaa1bb · GitHub

https://github.com/joshf/Burden/commit/edaa1bb8f73d6f3c8b2e78b67f1b40e02fccd0c1

generic

http://www.securityfocus.com/archive/1/530703/100/0/threaded

generic🟡 PoC Available

Burden 1.8 - Authentication Bypass - PHP webapps Exploit

http://www.exploit-db.com/exploits/30916

generic

Release Version 1.8.1 · joshf/Burden · GitHub

https://github.com/joshf/Burden/releases/tag/1.8.1

💥

Dependency Blast Radius

See which npm, PyPI, Go, and Maven packages are affected by CVE-2013-7137

Explore →

Is Your Infrastructure Affected by CVE-2013-7137?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs