CVE-2008-0169 — Vulnetix

Try Vulnetix Request Demo

CVE-2008-0169 PUBLISHED

Reported by mitre · Published June 3, 2008

Plugin/passwordauth.pm (aka the passwordauth plugin) in ikiwiki 1.34 through 2.47 allows remote attackers to bypass authentication, and login to any account for which an OpenID identity is configured and a password is not configured, by specifying an empty password during the login sequence.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a, n/a

Timeline

Jun 3, 2008 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score

References

30468 third-party-advisoryx_refsource_SECUNIA
ADV-2008-1710 vdb-entryx_refsource_VUPEN
x_refsource_CONFIRM
[oss-security] 20080531 Re: CVE id request: ikiwiki mailing-listx_refsource_MLIST
ikiwiki-openid-passwordauth-auth-bypass(42798) vdb-entryx_refsource_XF
x_refsource_CONFIRM
29479 vdb-entryx_refsource_BID
x_refsource_CONFIRM

Open in Interactive Console →