admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication, which allows remote attackers to change the admin password via an unspecified form submission.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:10
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.exploit-db.com/exploits/8775 - | |
References | () http://www.securityfocus.com/bid/35079 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/50723 - |
Information
Published : 2010-03-05 18:30
Updated : 2024-11-21 01:10
NVD link : CVE-2009-4675
Mitre link : CVE-2009-4675
CVE.ORG link : CVE-2009-4675
JSON object : View
Products Affected
mole-group
- gastro_portal_\(restaurant_directory\)_script
CWE
CWE-287
Improper Authentication