VYPR
Unrated severityNVD Advisory· Published Mar 14, 2005· Updated Jun 16, 2026

CVE-2005-0795

CVE-2005-0795

Description

HolaCMS 1.4.9 does not restrict file access to the holaDB/votes directory, which allows remote attackers to overwrite arbitrary files via a modified vote_filename parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

15
  • Hola/Holacms15 versions
    cpe:2.3:a:hola:holacms:1.2.10:*:*:*:*:*:*:*+ 14 more
    • cpe:2.3:a:hola:holacms:1.2.10:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.2.9:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.2a:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.5:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.6:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.7:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.8:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.9:*:*:*:*:*:*:*
    • cpe:2.3:a:hola:holacms:1.4.9_1:*:*:*:*:*:*:*
    • (no CPE)range: =1.4.9

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.