CVE-2009-2025

CVE-2009-2025 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

admin/login.php in DM FileManager 3.9.2 allows remote attackers to bypass authentication and gain administrative access by setting the (1) USER, (2) GROUPID, (3) GROUP, and (4) USERID cookies to certain values.

Learn more about our User Device Pen Test.