CVE-2005-2203

  • Last update: Apr 13, 2023

Description

login.php in phpWishlist before 0.1.15 allows remote attackers to bypass authentication via a direct request to admin.php.

Software From Fixed in
phpwishlist / phpwishlist 0.1.11 0.1.11.x
phpwishlist / phpwishlist 0.1.14 0.1.14.x
phpwishlist / phpwishlist 0.1.12 0.1.12.x
phpwishlist / phpwishlist 0.1.13 0.1.13.x
phpwishlist / phpwishlist 0.1.9 0.1.9.x
phpwishlist / phpwishlist 0.1.10 0.1.10.x

Details

    • Severity: High
  • CVE: CVE-2005-2203
  • Published: Jul 11, 2005
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v2

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P