CVE-2009-1739 Information

Description

PAD Site Scripts 3.6 allows remote attackers to bypass authentication and gain privileges as other users including administrative privileges by setting the authuser cookie parameter to a valid username.

Reference

http://osvdb.org/54593 http://secunia.com/advisories/35155 http://www.securityfocus.com/bid/35027 https://exchange.xforce.ibmcloud.com/vulnerabilities/50622 https://www.exploit-db.com/exploits/8735