Vulnerability Details CVE-2005-4653
Unspecified vulnerability in ss.php in AL-Caricatier 2.5 and earlier allows remote attackers to bypass login authentication by requesting view_caricatier.php, and then requesting any file in the admin directory with a cookie_username=admin argument.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 72.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0483.html
- http://secunia.com/advisories/17292
- http://www.securityfocus.com/bid/15162
- http://www.vupen.com/english/advisories/2005/2181
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22840
- http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0483.html
- http://secunia.com/advisories/17292
- http://www.securityfocus.com/bid/15162
- http://www.vupen.com/english/advisories/2005/2181
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22840
Products affected by CVE-2005-4653
-
cpe:2.3:a:al-caricatier:al-caricatier:1.0
-
cpe:2.3:a:al-caricatier:al-caricatier:2.5