Vulnerabilities > Apache > Geronimo > 2.0.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-11-03 | CVE-2007-5797 | Improper Authentication vulnerability in Apache Geronimo SQLLoginModule in Apache Geronimo 2.0 through 2.1 does not throw an exception for a nonexistent username, which allows remote attackers to bypass authentication via a login attempt with any username not contained in the database. | 7.5 |