CVE-2008-3454

JnSHosts PHP Hosting Directory 2.0 - Auth Bypass

Title source: llm

Description

JnSHosts PHP Hosting Directory 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the "adm" cookie value to 1.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Stack · textwebappsphp

https://www.exploit-db.com/exploits/6163

View Code ZIP pw:eip

References (5)

Core 5

Core References

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/4105

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/44110

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/31235

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/6163

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/30444

Scores

EPSS 0.0249

EPSS Percentile 85.4%

Details

CWE

CWE-264

Status published

Products (1)

jnshosts/php_hosting_directory 2.0

Published Aug 04, 2008

Tracked Since Feb 18, 2026