CVE-2009-4987

Name of the Vulnerable Software and Affected Versions Scripteen Free Image Hosting Script version 2.3

Description The issue allows remote attackers to bypass authentication and gain administrative access by setting the cookgid cookie value to 1. This is a different attack vector.

Recommendations For Scripteen Free Image Hosting Script version 2.3, as a temporary workaround, consider validating and sanitizing the cookgid cookie value to prevent unauthorized access until a patch is available. Restrict access to administrative functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.