Unrated severityNVD Advisory· Published Mar 25, 2009· Updated Jun 16, 2026
CVE-2008-6523
CVE-2008-6523
Description
auth.php in openInvoice 0.90 beta and earlier allows remote attackers to bypass authentication and gain privileges by setting the oiauth cookie. NOTE: this can be leveraged with a separate vulnerability in resetpass.php to modify passwords for arbitrary users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:cale_dunlap:openinvoice:0.90:beta:*:*:*:*:*:*
- Range: <=0.90 beta
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.