CVE-2005-2203 Information

Description

login.php in phpWishlist before 0.1.15 allows remote attackers to bypass authentication via a direct request to admin.php.

Reference

http://securitytracker.com/id?1014432 http://unix.freshmeat.net/projects/phpwishlist/?branch_id=53897&release_id=200925