CVE-2008-6667
Marc Melvin A+ Php Scripts News Manag... - Authentication Bypass
Title source: ruleDescription
A+ PHP Scripts News Management System (NMS) allows remote attackers to bypass authentication and gain administrator privileges by setting the mobsuser and mobspass cookies to 1.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Virangar Security · textwebappsphp
https://www.exploit-db.com/exploits/5954
References (3)
Core 3
Core References
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/5954
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/43431
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/29977
Scores
EPSS
0.0131
EPSS Percentile
79.9%
Details
CWE
CWE-287
Status
published
Products (1)
marc_melvin/a\+_php_scripts_news_management_system
Published
Apr 08, 2009
Tracked Since
Feb 18, 2026