Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Atomic Photo Album 1.1.0 pre4 does not properly handle the apa_cookie_login and apa_cookie_password cookies, which probably allows remote attackers to bypass authentication and gain administrative access via modified cookies.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Atomic Photo Album Cookie 身份认证绕过漏洞
Vulnerability Description
Atomic Photo Album没有合适的处理apa_cookie_login和apa_cookie_password cookies,远程攻击者可以借助修改cookies来绕过身份认证和获得管理访问权限。
CVSS Information
N/A
Vulnerability Type
N/A