Authentication Bypass Vulnerability in SAPID CMS before 1.2.3.03

Authentication Bypass Vulnerability in SAPID CMS before 1.2.3.03

CVE-2005-4006 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SAPID CMS before 1.2.3.03 allows remote attackers to bypass authentication via direct requests to the usr/system files (1) insert_file.php, (2) insert_image.php, (3) insert_link.php, (4) insert_qcfile.php, and (5) edit.php.

Learn more about our Api Penetration Testing.