Vulnerabilities for C1 financial services (...) - CXSECURITY.COM

Vulnerabilities for 'C1 financial services'

2007-03-03

CVE-2007-1249

CWE-362

MoveSortedContentAction in C1 Financial Services Contelligent 9.1.4 does not check "the additional environment security configuration," which allows remote attackers with write permissions to reorder components.

Copyright 2024, cxsecurity.com