CVE-2007-3643

Name of the Vulnerable Software and Affected Versions AV Arcade version 2.1b

Description The issue allows remote attackers to gain administrative privileges by setting the ava userid cookie value to 1, enabling them to perform certain administrative actions.

Recommendations For AV Arcade version 2.1b, consider restricting access to the admin/index.php page until a fix is available, and avoid using the ava userid cookie value of 1 to minimize the risk of exploitation.