oj.cgi in OpenJournal 2.0 through 2.0.5 allows remote attackers to bypass authentication and access the control panel via a 0 in the uid parameter.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| openjournal | openjournal | 2.0_2 |
| openjournal | openjournal | 2.0_3 |
| openjournal | openjournal | 2.0 |
| openjournal | openjournal | 2.0_4 |
| openjournal | openjournal | 2.0_5 |
| openjournal | openjournal | 2.0_1 |