Menu

#11 Cookie-Spoofing enables admin rights

open
nobody
None
5
2006-07-06
2006-07-06
Anonymous
No

If administrator authentication is done by cookies, an
attacker can easily gain administrator access by
forging a cookie with name "adminmode" and value "1".

Discussion


Log in to post a comment.

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.