Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CVE-2008-0169

Published

15 years ago

Last Modified

6 years ago

CVSSv2.0 Severity

Medium

Impact Analysis

Plugin/passwordauth.pm (aka the passwordauth plugin) in ikiwiki 1.34 through 2.47 allows remote attackers to bypass authentication, and login to any account for which an OpenID identity is configured and a password is not configured, by specifying an empty password during the login sequence..

CVSSv2.0 Score

Severity: Medium
Base Score: 6.8/10
Exploit Score: 8.6/10
Access Vector: Network
Access Complexity: Medium
Authentication Required: None
Impact Score: 6.4/10
Confidentiality Impact: Partial
Availability Impact: Partial
Integrity Impact: Partial

Products Affected

CPE	Affected	Vulnerable	Excluding
cpe:2.3:a:ikiwiki:ikiwiki:2.8:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.5:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.47:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.43:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.41:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.34.2:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.14:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.39:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.40:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.12:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.51:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.36:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.31:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.42:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.0:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.3:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.34:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.47:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.7:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.40:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.17:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.31.2:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.41:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.6:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.44:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.49:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.38:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.2:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.45:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.35:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.5:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.31.3:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.31.1:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.9:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.18:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.15:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.46:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.11:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.34.1:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.30:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.42:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.48:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.1:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.19:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.44:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.4:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.16:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.13:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.43:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.20:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:2.10:::::::*	Yes	-	-
cpe:2.3:a:ikiwiki:ikiwiki:1.37:::::::*	Yes	-	-

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CVE-2008-0169

Published

Last Modified

CVSSv2.0 Severity

Impact Analysis

Share

CVSSv2.0 Score

Products Affected

References

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CVE-2008-0169

CVE information

Published

Last Modified

CVSSv2.0 Severity

Impact Analysis

Share

Description

CVSSv2.0 Score

Products Affected

References