CVE-2009-2025

Metadata

CVE-2009-2025
7.5
vupen.com, exploit-db.com
2009-06-09
2017-09-29 06:09

Description

admin/login.php in DM FileManager 3.9.2 allows remote attackers to bypass authentication and gain administrative access by setting the (1) USER, (2) GROUPID, (3) GROUP, and (4) USERID cookies to certain values.

Related Vulnerabilities