Remote Code Execution Vulnerability in NewsPro 1.01 Allows Unauthorized Administrator Access

CVE-2002-1734 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

NewsPro 1.01 allows remote attackers to gain unauthorized administrator access by setting their authentication cookie to "logged,true".

Learn more about our Web Application Penetration Testing UK.