CVE-2003-1574
TikiWiki 1.6.1 - Authentication Bypass via Remember Me Feature
Title source: llmDescription
TikiWiki 1.6.1 allows remote attackers to bypass authentication by entering a valid username with an arbitrary password, possibly related to the Internet Explorer "Remember Me" feature. NOTE: some of these details are obtained from third party information.
References (3)
Core 3
Core References
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/14170
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/40347
Patch x_refsource_confirm
http://sourceforge.net/tracker/index.php?func=detail&aid=748739&group_id=64258&atid=506846
Scores
EPSS
0.0155
EPSS Percentile
71.9%
Details
CWE
CWE-287
Status
published
Products (1)
tiki/tikiwiki_cms\/groupware
1.6.1
Published
Aug 24, 2009
Tracked Since
Feb 18, 2026