This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Jay-jayx0r First view 2009-07-08
Product Phpmyblockchecker Last view 2009-07-08
Version 1.0.0055 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:jay-jayx0r:phpmyblockchecker

Activity : Overall

Related : CVE

  Date Alert Description
7.5 2009-07-08 CVE-2009-2382

admin.php in phpMyBlockchecker 1.0.0055 allows remote attackers to bypass authentication and gain administrative access by setting the PHPMYBCAdmin cookie to LOGGEDIN.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-287 Improper Authentication

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-22 Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-57 Utilizing REST's Trust in the System Resource to Register Man in the Middle
CAPEC-94 Man in the Middle Attack
CAPEC-114 Authentication Abuse

Open Source Vulnerability Database (OSVDB)

id Description
55505 phpMyBlockchecker PHPMYBCAdmin Cookie Manipulation Admin Authentication Bypass