CVE-2010-1191

2010-03-31T18:00:00
ID CVE-2010-1191
Type cve
Reporter cve@mitre.org
Modified 2018-10-10T19:56:00

Description

Sahana disaster management system 0.6.2.2, and possibly other versions, allows remote attackers to bypass intended access restrictions and disable administrator authentication via a direct request to stream.php in an acl_enable_acl action to the admin module.