CVE-2001-0911

Name of the Vulnerable Software and Affected Versions PHP-Nuke version 5.1

Description The issue allows remote attackers to gain privileges by stealing or sniffing a cookie and decoding it, as user and administrator passwords are stored in a base-64 encoded cookie.

Recommendations For PHP-Nuke version 5.1, consider implementing secure password storage mechanisms to prevent unauthorized access. As a temporary workaround, restrict access to sensitive areas of the application to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.