Vulnerability Details CVE-2006-0607
check.php in Hinton Design phphd 1.0 does not check passwords when certain cookies are provided, which allows remote attackers to bypass authentication.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 79.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/18793
- http://www.evuln.com/vulns/60/summary.html
- http://www.osvdb.org/23026
- http://www.securityfocus.com/archive/1/424827/100/0/threaded
- http://www.securityfocus.com/bid/16586
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24510
- http://secunia.com/advisories/18793
- http://www.evuln.com/vulns/60/summary.html
- http://www.osvdb.org/23026
- http://www.securityfocus.com/archive/1/424827/100/0/threaded
- http://www.securityfocus.com/bid/16586
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24510
Products affected by CVE-2006-0607
-
cpe:2.3:a:hinton_design:phphd:1.0