Vulnerabilities > CVE-2002-2175 - Unspecified vulnerability in PHP PHPsquidpass
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
phpSquidPass before 0.2 uses an incomplete regular expression to find a matching username in its database, which allows remote authenticated attackers to effectively delete other usernames via a short username that matches the end of the targeted username. This vulnerability affects all versions of phpSquidPass before 0.2
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |