CVE-2005-4007

Name of the Vulnerable Software and Affected Versions SAPID CMS versions prior to 1.2.3.03

Description The issue involves multiple unspecified vulnerabilities related to newly registered users and possibly authorization checks. These vulnerabilities have unknown impact and attack vectors, involving the "mvc/controller/user request analysis.inc.php" and "usr/xml/ddc/authorization.xml" files.

Recommendations For SAPID CMS versions prior to 1.2.3.03, update to version 1.2.3.03 or later to resolve the issue. As a temporary workaround, consider restricting access to the "mvc/controller/user request analysis.inc.php" file and the "usr/xml/ddc/authorization.xml" file until a patch is available. Avoid using the affected authorization checks in the "usr/xml/ddc/authorization.xml" file until the issue is resolved.