Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2007-3193

Опубликовано: 12 июн. 2007
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 10

Описание

lib/WikiUser/LDAP.php in PhpWiki before 1.3.13p1, when the configuration lacks a nonzero PASSWORD_LENGTH_MINIMUM, might allow remote attackers to bypass authentication via an empty password, which causes ldap_bind to return true when used with certain LDAP implementations.

РелизСтатусПримечание
dapper

ignored

end of life
devel

released

1.3.12p3-6.1
edgy

ignored

end of life, was needed
feisty

ignored

end of life, was needed
gutsy

released

1.3.12p3-6.1
hardy

released

1.3.12p3-6.1
intrepid

released

1.3.12p3-6.1
jaunty

released

1.3.12p3-6.1
karmic

released

1.3.12p3-6.1
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 85%
0.02552
Низкий

10 Critical

CVSS2

Связанные уязвимости

nvd логотип

CVE-2007-3193

nvd
больше 18 лет назад

lib/WikiUser/LDAP.php in PhpWiki before 1.3.13p1, when the configuration lacks a nonzero PASSWORD_LENGTH_MINIMUM, might allow remote attackers to bypass authentication via an empty password, which causes ldap_bind to return true when used with certain LDAP implementations.

debian логотип

CVE-2007-3193

debian
больше 18 лет назад

lib/WikiUser/LDAP.php in PhpWiki before 1.3.13p1, when the configurati ...

github логотип

GHSA-qqr6-7wx3-g97v

github
больше 3 лет назад

lib/WikiUser/LDAP.php in PhpWiki before 1.3.13p1, when the configuration lacks a nonzero PASSWORD_LENGTH_MINIMUM, might allow remote attackers to bypass authentication via an empty password, which causes ldap_bind to return true when used with certain LDAP implementations.

EPSS

Процентиль: 85%
0.02552
Низкий

10 Critical

CVSS2