CVE-2008-4245

2008-09-2519:00:00

mitre

www.cve.org

6.4 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.4%

JSON

The Admin Control Panel in Rianxosencabos CMS 0.9 does not require administrator privileges, which allows remote authenticated users to (1) change a user’s privileges, (2) delete a user account, or perform unspecified other administrative actions via vectors involving an admin lista action to the default URI, possibly related to useradmin.php.