Layton Helpbox 4.4.0 allows remote authenticated users to change the login context and gain privileges via a modified (1) loggedinenduser, (2) loggedinendusername, (3) loggedinuserusergroup, (4) loggedinuser, or (5) loggedinusername cookie.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-12-12T11:00:00Z
Updated: 2024-09-17T00:25:44.806Z
Reserved: 2012-09-19T00:00:00Z
Link: CVE-2012-4974
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2012-12-12T11:38:44.263
Modified: 2012-12-28T05:00:00.000
Link: CVE-2012-4974
Redhat
No data.