Remote Code Execution Vulnerability in ACS Blog 0.8 through 1.1.3

Remote Code Execution Vulnerability in ACS Blog 0.8 through 1.1.3

CVE-2005-1288 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

inc_login_check.asp ACS Blog 0.8 through 1.1.3 allows remote attackers to gain administrator privileges via the "in" value in a cookie.

Learn more about our Web Application Penetration Testing UK.