2 matches found
CVE-2007-4932
admin.php in Shop-Script FREE 2.0 and earlier sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote attackers to access the admin panel...
CVE-2007-4932
Shop-Script FREE 2.0 and earlier is affected by CVE-2007-4932: admin.php fails to exit after a redirect when administrative credentials are missing, allowing an unauthenticated remote attacker to access the admin panel. The NVD entry confirms the bypass/panel access impact, and Nessus notes a lik...