{"id":"CVE-2005-2654","details":"phpldapadmin before 0.9.6c allows remote attackers to gain anonymous access to the LDAP server, even when disable_anon_bind is set, via an HTTP request to login.php with the anonymous_bind parameter set.","modified":"2026-04-10T03:38:11.176558Z","published":"2005-08-30T17:03:00Z","references":[{"type":"ADVISORY","url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=322423"},{"type":"ADVISORY","url":"http://www.debian.org/security/2005/dsa-790"},{"type":"ADVISORY","url":"http://www.gentoo.org/security/en/glsa/glsa-200509-04.xml"},{"type":"FIX","url":"http://www.debian.org/security/2005/dsa-790"}],"schema_version":"1.7.5"}