Unspecified vulnerability in cron.php in FreeSeat before 1.1.5d, when format.php has certain modifications, allows remote attackers to bypass authentication and gain privileges via unspecified vectors related to the show_foot function.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0293)