CVE-2002-1952

Name of the Vulnerable Software and Affected Versions phpRank version 1.8

Description The issue arises from improper checking of return codes for MySQL operations during user authentication. This could allow remote attackers to authenticate using a NULL password under certain conditions, such as when database errors occur or if the database is unavailable.

Recommendations For phpRank version 1.8, ensure proper error handling for MySQL operations during user authentication to prevent unauthorized access. Consider implementing additional checks to verify the authenticity of user credentials, especially when database errors are encountered or the database is unavailable.