RSS   Vulnerabilities for 'Grestul'   RSS

2009-06-12
 
CVE-2009-2040

CWE-287
 

 
admin/options.php in Grestul 1.2 does not properly restrict access, which allows remote attackers to bypass authentication and create administrative accounts via a manage_admin action in a direct request.

 


Copyright 2024, cxsecurity.com

 

Back to Top