Vulnerabilities > Realm Project > Realm CMS > 2.3

DATE	CVE	VULNERABILITY TITLE	RISK
2008-06-12	CVE-2008-2682	Permissions, Privileges, and Access Controls vulnerability in Realm Project Realm CMS 2.3 _RealmAdmin/login.asp in Realm CMS 2.3 and earlier allows remote attackers to bypass authentication and access admin pages via certain modified cookies, probably including (1) cUserRole, (2) cUserName, and (3) cUserID. network low complexity realm-project CWE-264	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.