CVE-2005-1787

Phpstat - Improper Input Validation

Title source: rule

Description

setup.php in phpStat 1.5 allows remote attackers to bypass authentication and gain administrator privileges by setting the $check variable.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Nikyt0x · phpwebappsphp
https://www.exploit-db.com/exploits/1018
exploitdb WORKING POC VERIFIED
by mh_p0rtal · phpwebappsphp
https://www.exploit-db.com/exploits/1017
exploitdb WORKING POC VERIFIED
by Alpha_Programmer · perlwebappsphp
https://www.exploit-db.com/exploits/1016

References (5)

Scores

EPSS 0.0681
EPSS Percentile 91.4%

Details

CWE
CWE-20
Status published
Products (1)
phpstat/phpstat
Published May 27, 2005
Tracked Since Feb 18, 2026