← CVECheck
HomeVulnerabilities

CVE-2004-2066 — HIGH severity vulnerability (SQL injection vulnerability in session.php in LinPHA 0.9.4 a)

SQL injection vulnerability in session.php in LinPHA 0.9.4 allows remote attackers to execute arbitrary SQL code and bypass authentication via the (1) linpha_userid or (2) linpha_password cookies.

CVE IDCVE-2004-2066
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2004-07-29
Last modified2026-04-16
DescriptionSQL injection vulnerability in session.php in LinPHA 0.9.4 allows remote attackers to execute arbitrary SQL code and bypass authentication via the (1) linpha_userid or (2) linpha_password cookies.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →