CVE-2009-1739

Name of the Vulnerable Software and Affected Versions: PAD Site Scripts version 3.6

Description: The issue allows remote attackers to bypass authentication and gain privileges as other users, including administrative privileges. This is achieved by setting the authuser cookie parameter to a valid username.

Recommendations: For PAD Site Scripts version 3.6, update the authentication mechanism to properly validate and handle the authuser cookie parameter to prevent unauthorized access. As a temporary workaround, consider implementing additional authentication checks to verify user identities before granting access.