6.8

CVE-2008-0169

Plugin/passwordauth.pm (aka the passwordauth plugin) in ikiwiki 1.34 through 2.47 allows remote attackers to bypass authentication, and login to any account for which an OpenID identity is configured and a password is not configured, by specifying an empty password during the login sequence.

Data is provided by the National Vulnerability Database (NVD)
IkiwikiIkiwiki Version1.5
IkiwikiIkiwiki Version1.34
IkiwikiIkiwiki Version1.34.1
IkiwikiIkiwiki Version1.34.2
IkiwikiIkiwiki Version1.35
IkiwikiIkiwiki Version1.36
IkiwikiIkiwiki Version1.37
IkiwikiIkiwiki Version1.38
IkiwikiIkiwiki Version1.39
IkiwikiIkiwiki Version1.40
IkiwikiIkiwiki Version1.41
IkiwikiIkiwiki Version1.42
IkiwikiIkiwiki Version1.43
IkiwikiIkiwiki Version1.44
IkiwikiIkiwiki Version1.45
IkiwikiIkiwiki Version1.46
IkiwikiIkiwiki Version1.47
IkiwikiIkiwiki Version1.48
IkiwikiIkiwiki Version1.49
IkiwikiIkiwiki Version1.51
IkiwikiIkiwiki Version2.0
IkiwikiIkiwiki Version2.1
IkiwikiIkiwiki Version2.2
IkiwikiIkiwiki Version2.3
IkiwikiIkiwiki Version2.4
IkiwikiIkiwiki Version2.5
IkiwikiIkiwiki Version2.6
IkiwikiIkiwiki Version2.7
IkiwikiIkiwiki Version2.8
IkiwikiIkiwiki Version2.9
IkiwikiIkiwiki Version2.10
IkiwikiIkiwiki Version2.11
IkiwikiIkiwiki Version2.12
IkiwikiIkiwiki Version2.13
IkiwikiIkiwiki Version2.14
IkiwikiIkiwiki Version2.15
IkiwikiIkiwiki Version2.16
IkiwikiIkiwiki Version2.17
IkiwikiIkiwiki Version2.18
IkiwikiIkiwiki Version2.19
IkiwikiIkiwiki Version2.20
IkiwikiIkiwiki Version2.30
IkiwikiIkiwiki Version2.31
IkiwikiIkiwiki Version2.31.1
IkiwikiIkiwiki Version2.31.2
IkiwikiIkiwiki Version2.31.3
IkiwikiIkiwiki Version2.40
IkiwikiIkiwiki Version2.41
IkiwikiIkiwiki Version2.42
IkiwikiIkiwiki Version2.43
IkiwikiIkiwiki Version2.44
IkiwikiIkiwiki Version2.47
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.47% 0.616
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P