Unrated severityNVD Advisory· Published Apr 13, 2018· Updated Sep 17, 2024
Authentication bypass via repeated parameters
CVE-2017-0356
Description
A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.20170111, in the passwordauth plugin's use of CGI::FormBuilder, allowing an attacker to bypass authentication via repeated parameters.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.debian.org/security/2017/dsa-3760mitrevendor-advisoryx_refsource_DEBIAN
- www.securityfocus.com/bid/95420mitrevdb-entryx_refsource_BID
- ikiwiki.info/security/mitrex_refsource_CONFIRM
- marc.infomitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.