Totaljs CMS version 12.0 mints an insecure cookie that can be used to crack the administrator password.
0a2cad24207433d59726009fe65b6983
ResourceSpace suffers from cross site scripting, html injection, insecure cookie handling, and remote SQL injection vulnerabilities. Versions 6.4.5976 and below are affected.
03e800ad1662493c04875984cc1a6531
NICE Recording eXpress versions 6.0.x, 6.1.x, 6.2.x, 6.3.x, and 6.5.x suffer from cross site scripting, root backdoor, unauthenticated access, fail authorization, insecure cookie handling, and remote SQL injection vulnerabilities.
84c627abbbedce37f8fcc1d6c972b8f4
Paddelberg Topsite Script version 1.2.3 suffers from an authentication bypass vulnerability due to insecure cookie handling.
de908ed7f1dbdbeea8ae7d06cbc6e4d0
AV Arcade Pro version 5.4.3 suffers from an insecure cookie vulnerability that allows for access bypass.
b19fe616cfb1489b4b4a4db51c1623c0
PHPDirector version 0.30 suffers from an insecure cookie handling vulnerability that allows for privilege escalation.
5a9105167cb17a07b6023fa8973160fa
web.go suffers from an insecure cookie vulnerability. Their cookie is modeled after Tornado which had the same issue reported on in 2010.
c0a8007d2a21e6fa524b63baa475e61c
Babil CMS suffers from an insecure cookie handling vulnerability.
8337be0024e5087417012bf8caf7cded
WikiWebHelp version 0.3.3 suffers from an insecure cookie handling vulnerability.
126ce6ee87cd14cde0227b4b856daf42
PHP Hosting Directory version 2.0 suffers from an insecure cookie vulnerability that allows for administrative bypass.
1cf901823df8228875d9cc63adfa8d70
xWeblog version 2.2 suffers from an insecure cookie handling vulnerability.
d50a6e7c169726208d26f99dac4ab2ae
Aleza Portal version 1.6 suffers from an insecure cookie handling vulnerability that allows for SQL injection.
939ccdf34cdc42cef17aefebb715ca89
Tornado version 1.0 suffers from an insecure cookie vulnerability.
d70eb4e7256eaef573219f08319b7dd0
Open Cart version 0.6.5 suffers from an insecure cookie handling vulnerability.
63fc5cdb828d1521c71a582a3d3ef75b
AV Arcade version 3 suffers from insecure cookie and SQL injection vulnerabilities.
e24295757afa6e9f6b4a25d30a5fe4e7
My Book suffers from an insecure cookie handling vulnerability.
7dc8c72f2ad9db5f5fbf4eb88a84c19a
[whem]-UPLoad version 7.0 suffers from an insecure cookie handling vulnerability.
f1239aae7cccf96f99ee114041086a4c
Memorial Web Site Script suffers from password reset and insecure cookie handling vulnerabilities.
ec04c83bfeb5096694207899d8defcd8
velBox version 1.2 suffers from an insecure cookie handling vulnerability.
800ed15959df3f3ee25a5f93702e8fd8
Denapars Shop Script suffers from administrative bypass, shell upload, and insecure cookie handling vulnerabilities.
ae5ef30110a948ca0c537ff6ac64d439
Islamic Voice suffers from an insecure cookie handling vulnerability.
ba4c423ae9874d3adf9ca99dd6e57fa1
CuteNews version 1.4.6 suffers from an insecure cookie handling vulnerability.
04d570d583a36d524fbe3d82c01d26b1
Newbie CMS suffers from an insecure cookie handling vulnerability.
18a16902e4af232fa4b30300393edee3
Ac4p.com Gallery version 1.0 suffers from cross site scripting, phpinfo disclosure, shell upload, and insecure cookie handling vulnerabilities.
73bcea085c5da9ca438789ba908f061b
UPLoad version 7.0 suffers from an insecure cookie handling vulnerability.
9d10afc9f8b0549947f289bea66aaabe