Hesk · Hesk · CVE-2005-2843
**Name of the Vulnerable Software and Affected Versions**
Hesk version 0.92
**Description**
The issue concerns a problem with username and password verification in the software. Remote attackers can bypass authentication by making a direct request to the "admin main.php" API endpoint.
**Recommendations**
For Hesk version 0.92, consider disabling access to the "admin main.php" endpoint until a proper fix is available to prevent unauthorized access.