CVE-2009-2117

Name of the Vulnerable Software and Affected Versions phPortal version 1.0

Description The issue allows remote attackers to bypass authentication and gain administrative access. This is achieved by setting the kulladi cookie to a valid username, exploiting the uye paneli.php file in phPortal.

Recommendations For phPortal version 1.0, consider temporarily restricting access to the uye paneli.php file until a patch is available. Additionally, avoid using the kulladi cookie for authentication purposes in the affected version. At the moment, there is no information about a newer version that contains a fix for this vulnerability.