CVE-2003-1574

Tikiwiki Cms/groupware - Authentication Bypass

Title source: rule

Description

TikiWiki 1.6.1 allows remote attackers to bypass authentication by entering a valid username with an arbitrary password, possibly related to the Internet Explorer "Remember Me" feature. NOTE: some of these details are obtained from third party information.

References (3)

[Patch] http://sourceforge.net/tracker/index.php?func=detail&aid=748739&group_id=64258&atid=506846

[Patch] http://www.securityfocus.com/bid/14170

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/40347

Scores

EPSS 0.0034

EPSS Percentile 56.4%

Classification

CWE

CWE-287

Status draft

Affected Products (1)

tiki/tikiwiki_cms\/groupware

Timeline

Published Aug 24, 2009

Tracked Since Feb 18, 2026