CVE-2005-0794 : ZPanel 2.0 and 2.5 beta 10 does not remove or protect installation scripts after

ZPanel 2.0 and 2.5 beta 10 does not remove or protect installation scripts after they have been used, which allows remote attackers to reinstall the software and possibly cause a denial of service via a direct request to install.php.

Published 2005-03-15 05:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2005-0794

Zpanel » Zpanel » Version: 2.5 Beta10
cpe:2.3:a:zpanel:zpanel:2.5_beta10:*:*:*:*:*:*:*
Matching versions
Zpanel » Zpanel » Version: 2.0
cpe:2.3:a:zpanel:zpanel:2.0:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2005-0794

EPSS FAQ

0.74%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 71 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2005-0794

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.4	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:P	10.0	4.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: Partial

References for CVE-2005-0794

https://exchange.xforce.ibmcloud.com/vulnerabilities/19711
http://marc.info/?l=bugtraq&m=111090324111053&w=2

'Few remote bugs in zPanel' - MARC

CVEs referencing this url
http://marc.info/?l=bugtraq&m=111142323616309&w=2

CVEs referencing this url
http://secunia.com/advisories/14602

Patch;Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2005-0794

Products affected by CVE-2005-0794

Exploit prediction scoring system (EPSS) score for CVE-2005-0794

CVSS scores for CVE-2005-0794

References for CVE-2005-0794