cbcvebase.
CVE-2008-3318
published 2008-07-25

CVE-2008-3318: admin/index.php in Maian Weblog 4.0 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary…

PriorityP260high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
8.10%
94.1th percentile
admin/index.php in Maian Weblog 4.0 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary weblog_cookie cookie.

Affected

2 ranges
VendorProductVersion rangeFixed in
maianweblog<= 3.1
maianweblog<= 4.0

Detection & IOCsextracted from sources · hover to see the quote

cookieweblog_cookie=1
path/admin/index.php
  • Detect authentication bypass by monitoring requests to /admin/index.php that carry any arbitrary 'weblog_cookie' cookie value — the application only checks for cookie existence, not its content.
  • Alert on HTTP requests to admin/index.php in Maian Weblog that include a 'weblog_cookie' cookie from unauthenticated or unexpected sources.
  • Search engine dork can be used to identify exposed Maian Weblog instances: 'Powered by Maian Weblog v4.0'
  • ·Any arbitrary value for the weblog_cookie cookie grants admin access — the vulnerability is in the existence check, not value validation, so blocking a specific cookie value is insufficient; the entire cookie-based auth logic must be replaced.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.