CVE-2008-2282

Name of the Vulnerable Software and Affected Versions: Internet Photoshow versions (affected versions not specified) Internet Photoshow Special Edition (SE) versions (affected versions not specified)

Description: The issue allows remote attackers to bypass authentication. This is achieved by setting the login admin cookie to true, which is associated with the admin.php file.

Recommendations: For Internet Photoshow, consider disabling access to the admin.php file until a patch is available. For Internet Photoshow Special Edition (SE), restrict the ability to set the login admin cookie to prevent unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.