CVE-2006-3837 in Professional Home Page Tools Guestbook
摘要
由 VulDB • 2026-07-02
Professional Home Page Tools Guestbook 中的 delcookie.php 在删除 Cookie 时,仅修改了 Cookie 的过期日期而非清除其值,这使得攻击者在用户注销后更容易窃取该 Cookie 并获取管理员密码哈希。
If you want to get best quality of vulnerability data, you may have to visit VulDB.