Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PHPAuctions (aka PHPAuctionSystem) allows remote attackers to bypass authentication and gain administrative access via modified (1) PHPAUCTION_RM_ID, (2) PHPAUCTION_RM_NAME, (3) PHPAUCTION_RM_USERNAME, and (4) PHPAUCTION_RM_EMAIL cookies.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHPAuctions Cookie 身份认证绕过漏洞
Vulnerability Description
PHPAuctions是一款基于PHP的WEB应用程序。 PHPAuctions(又称PHPAuctionSystem)存在权限许可和访问控制漏洞。远程攻击者借助修改过的(1)PHPAUCTION_RM_ID (2)PHPAUCTION_RM_NAME (3)PHPAUCTION_RM_USERNAME (4)PHPAUCTION_RM_EMAIL cookies 绕过身份认证和获得管理访问权限。
CVSS Information
N/A
Vulnerability Type
N/A