Unrated severityNVD Advisory· Published May 1, 2009· Updated Jun 16, 2026
CVE-2009-1504
CVE-2009-1504
Description
Absolute Form Processor XE 1.5 allows remote attackers to bypass authentication and gain administrative access by setting the xlaAFPadmin cookie to "lvl=1&userid=1."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:xigla:absolute_control_panel_xe:1.5:*:*:*:*:*:*:*
- Range: = 1.5
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.