CyberSec.Space Logo
Back to CVE Browser

CVE-2005-4007

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1980%
EPSS Percentile16.81th
PublishedDec 5, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple unspecified vulnerabilities in SAPID CMS before 1.2.3.03, related to newly registered users and possibly authorization checks, have unknown impact and attack vectors involving (1) mvc/controller/user_request_analysis.inc.php and (2) usr/xml/ddc/authorization.xml.

Affected Platforms (CPE)

πŸ“¦
Redgraphic

Sapid Cms

<= 1.2.3.02
πŸ“¦
Redgraphic

Sapid Cms

= 1.2.3
πŸ“¦
Redgraphic

Sapid Cms

= 1.2.3
πŸ“¦
Redgraphic

Sapid Cms

= 1.2.3
πŸ“¦
Redgraphic

Sapid Cms

= 1.2.3
πŸ“¦
Redgraphic

Sapid Cms

= 1.2.3

References & Advisories

πŸ”— http://sapid-club.com/en/viewtopic.php?p=586#586
πŸ”— http://sourceforge.net/project/shownotes.php?release_id=375289&group_id=118100
πŸ”— http://sapid-club.com/en/viewtopic.php?p=586#586
πŸ”— http://sourceforge.net/project/shownotes.php?release_id=375289&group_id=118100

Related Vulnerabilities

CVE-2005-40067.5

SAPID CMS before 1.2.3.03 allows remote attackers to bypass authentication via direct requests to the usr/system files (1) insert_...

CVE-2006-40267.5

PHP remote file inclusion vulnerability in SAPID CMS 123 rc3 allows remote attackers to execute arbitrary PHP code via a URL in th...

CVE-2012-52937.5

Multiple PHP remote file inclusion vulnerabilities in SAPID CMS 1.2.3 Stable allow remote attackers to execute arbitrary PHP code ...

CVE-2007-50566.8

Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and earlier, as used in products including CMS Made S...