admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication, which allows remote attackers to change the admin password via an unspecified form submission.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2010-03-05 18:30
Updated : 2024-02-28 11:41
NVD link : CVE-2009-4675
Mitre link : CVE-2009-4675
CVE.ORG link : CVE-2009-4675
JSON object : View
Products Affected
mole-group
- gastro_portal_\(restaurant_directory\)_script
CWE
CWE-287
Improper Authentication