Design/Logic Flaw

2009-05-0723:30:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

Low

0.046 Low

EPSS

Percentile

92.6%

JSON

Million Dollar Text Links 1.0 does not properly restrict administrator access to admin.home.php, which allows remote attackers to bypass intended restrictions and gain privileges via a direct request to admin.home.php after visiting admin.php.

CPENameOperatorVersion
million_dollar_text_linkseq1.0

CPE	Name	Operator	Version
	million_dollar_text_links	eq	1.0

References

osvdb.org/54204

secunia.com/advisories/34994

www.securityfocus.com/bid/34809

exchange.xforce.ibmcloud.com/vulnerabilities/50306

www.exploit-db.com/exploits/8605