CVE-2008-5783

V3 Chat Live Support 3.0.4 - Auth Bypass

Title source: llm

Description

admin/index.php in V3 Chat Live Support 3.0.4 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Cyber-Zone · textwebappsphp

https://www.exploit-db.com/exploits/7069

View Code ZIP pw:eip

exploitdb WORKING POC

webappsphp

https://www.exploit-db.com/exploits/7063

View Code ZIP pw:eip

References (6)

[Vendor Advisory] http://secunia.com/advisories/32603

[Exploit] http://www.securityfocus.com/bid/32216

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7069

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/46481

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/3066

[Third Party Advisory] http://securityreason.com/securityalert/4843

Scores

EPSS 0.0651

EPSS Percentile 91.2%

Details

CWE

CWE-287

Status published

Products (1)

v3chat/v3_chat_live_support 3.0.4

Published Dec 31, 2008

Tracked Since Feb 18, 2026