CVE-2005-1596

2005-05-16T04:00:00
ID CVE-2005-1596
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:32:00

Description

index.php in Fusion SBX 1.2 and earlier does not properly use the extract function, which allows remote attackers to bypass authentication by setting the is_logged parameter or execute arbitrary code via the maxname2 parameter.