CVE-2008-3292

CVE-2008-3292 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

constants.inc in EZWebAlbum 1.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the photoalbumadmin cookie, as demonstrated via addpage.php.

Learn more about our Web App Pen Testing.