CVE-2008-7028

Description

RPG.Board 0.8 Beta2 and earlier allows remote attackers to bypass authentication and gain privileges by setting the keep4u cookie to a certain value.

Affected products

• aves / rpg_board0.0.8
• aves / rpg_board0.0.8 – 0.0.8
• aves / rpg_board0.8 – 0.8
• aves / rpg_board0.8 – 0.8

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/45501
• MISChttp://www.securityfocus.com/bid/31466
• EXPLOIThttps://www.exploit-db.com/exploits/6591