Vulnerabilities > CVE-2002-1428 - Authentication Bypass vulnerability in Dotproject 0.2.1.5

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
dotproject
critical
exploit available
NVD
Published: 2003-04-11
Updated: 2008-09-05

Summary

index.php in dotProject 0.2.1.5 allows remote attackers to bypass authentication via a cookie or URL with the user_cookie parameter set to 1.

Vulnerable Configurations

Part Description Count
Application
Dotproject
1

Exploit-Db

descriptionDotProject 0.2.1 User Cookie Authentication Bypass Vulnerability. CVE-2002-1428. Webapps exploit for php platform
idEDB-ID:21661
last seen2016-02-02
modified2002-07-29
published2002-07-29
reporterpokleyzz
sourcehttps://www.exploit-db.com/download/21661/
titleDotProject 0.2.1 User Cookie Authentication Bypass Vulnerability

References