Vulnerability Description
Unspecified vulnerability in ss.php in AL-Caricatier 2.5 and earlier allows remote attackers to bypass login authentication by requesting view_caricatier.php, and then requesting any file in the admin directory with a cookie_username=admin argument.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Al-Caricatier | Al-Caricatier | 1.0 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0483.htmlExploit
- http://secunia.com/advisories/17292Vendor Advisory
- http://www.securityfocus.com/bid/15162
- http://www.vupen.com/english/advisories/2005/2181
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22840
- http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0483.htmlExploit
- http://secunia.com/advisories/17292Vendor Advisory
- http://www.securityfocus.com/bid/15162
- http://www.vupen.com/english/advisories/2005/2181
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22840
FAQ
What is CVE-2005-4653?
CVE-2005-4653 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in ss.php in AL-Caricatier 2.5 and earlier allows remote attackers to bypass login authentication by requesting view_caricatier.php, and then requesting any file in the admin...
How severe is CVE-2005-4653?
CVE-2005-4653 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4653?
Check the references section above for vendor advisories and patch information. Affected products include: Al-Caricatier Al-Caricatier.