Filtered by vendor Surf-net Subscriptions
Filtered by product Asp Forum Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2001-0972 1 Surf-net 1 Asp Forum 2024-11-20 N/A
Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remote attackers to gain administrative privileges by calculating the value of the admin cookie (UserID 1), i.e. "0888888."