cookie_gen.php in ar web content manager (AWCM) 2.2 does not require authentication, which allows remote attackers to generate arbitrary cookies via the name parameter in conjunction with the content parameter.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-11-26T11:00:00
Updated: 2024-08-06T19:34:25.465Z
Reserved: 2012-04-27T00:00:00
Link: CVE-2012-2437
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-11-26T12:45:22.127
Modified: 2024-11-21T01:39:06.117
Link: CVE-2012-2437
Redhat
No data.