Jasio.net : Security Vulnerabilities, CVEs, Published In 2005 (Bypass)
functions.php in Ragnarok Online Control Panel (ROCP) 4.3.4a allows remote attackers to bypass authentication by requesting account_manage.php with a trailing "/login.php" PHP_SELF value, which is not properly handled by the CHECK_AUTH function.
Max CVSS
7.5
EPSS Score
0.33%
Published
2005-12-31
Updated
2008-09-05
1 vulnerabilities found