CVE-2008-4334

Cannot Php Infoboard - Access Control

Title source: rule

Description

PHP infoBoard V.7 Plus allows remote attackers to bypass authentication and gain administrative access by setting the infouser cookie to 1.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Stack · textwebappsphp
https://www.exploit-db.com/exploits/6568

References (2)

Scores

EPSS 0.0152
EPSS Percentile 81.0%

Classification

CWE
CWE-264
Status draft

Affected Products (1)

cannot/php_infoboard

Timeline

Published Sep 30, 2008
Tracked Since Feb 18, 2026