The check_login function in login.php in Virtual Hosting Control System (VHCS) 2.4.7.1 and earlier does not exit when authentication fails, which allows remote attackers to gain unauthorized access.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-02-15T00:00:00

Updated: 2024-08-07T16:41:29.189Z

Reserved: 2006-02-14T00:00:00

Link: CVE-2006-0685

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2006-02-15T00:02:00.000

Modified: 2024-11-21T00:07:05.727

Link: CVE-2006-0685

cve-icon Redhat

No data.