CVE-2012-1840 Information

Description

AjaXplorer 3.2.x before 3.2.5 and 4.0.x before 4.0.4 does not properly perform cookie authentication which allows remote attackers to obtain login access by leveraging knowledge of a password hash.

Reference

http://ajaxplorer.info/ajaxplorer-4-0-4/ http://www.kb.cert.org/vuls/id/504019 https://exchange.xforce.ibmcloud.com/vulnerabilities/74305