CVE-2005-4006

Name of the Vulnerable Software and Affected Versions SAPID CMS versions prior to 1.2.3.03

Description The issue allows remote attackers to bypass authentication by making direct requests to certain files, including insert file.php, insert image.php, insert link.php, insert qcfile.php, and edit.php. This could potentially lead to unauthorized access.

Recommendations For SAPID CMS versions prior to 1.2.3.03, update to version 1.2.3.03 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable files, such as insert file.php, insert image.php, insert link.php, insert qcfile.php, and edit.php, to minimize the risk of exploitation.