ID de Prueba:	1.3.6.1.4.1.25623.1.0.901002
Categoría:	Web application abuses
Título:	Tiki Wiki CMS Groupware Authentication Bypass Vulnerability
Resumen:	Tiki Wiki CMS Groupware is prone to an authentication bypass; vulnerability.
Descripción:	Summary: Tiki Wiki CMS Groupware is prone to an authentication bypass vulnerability. Vulnerability Insight: The flaw is due to improper validation of user login credentials. By entering a valid username, an arbitrary or null password, and clicking on the 'remember me' button. Vulnerability Impact: Successful exploitation could allows to bypass the authentication process to gain unauthorized access to the system with the privileges of the victim. Affected Software/OS: Tiki Wiki CMS Groupware version 1.6.1 only. Solution: Update to version 1.7.1.1 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2003-1574 BugTraq ID: 14170 http://www.securityfocus.com/bid/14170 XForce ISS Database: tikiwiki-username-security-byass(40347) https://exchange.xforce.ibmcloud.com/vulnerabilities/40347
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.