CVE-2003-0589

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1310%

EPSS Percentile16.05th

PublishedAug 18, 2003

Last ModifiedApr 16, 2026

Vulnerability Description

admin.php in Digi-ads 1.1 allows remote attackers to bypass authentication via a cookie with the username set to the name of the administrator, which satisfies an improper condition in admin.php that does not require a correct password.

Affected Platforms (CPE)

📦

Digi Fx

Digi News

= 1.1

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=105839007002993&w=2

Related Vulnerabilities

CVE-2003-058810.0

admin.php in Digi-news 1.1 allows remote attackers to bypass authentication via a cookie with the username set to the name of the ...

CVE-2003-073110.0

CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certai...

CVE-2003-073210.0

CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to obtain restricted information and possibly ...

CVE-2003-073410.0

Unknown vulnerability in the pam_filter mechanism in pam_ldap before version 162, when LDAP based authentication is being used, al...