CVE-2009-4546 Information

Description

globepersonnel_login.asp in Logoshows BBS 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the (1) pb_username (aka pb5Fusername) and (2) level cookies.

Reference

http://www.exploit-db.com/exploits/9400 https://exchange.xforce.ibmcloud.com/vulnerabilities/52366