CVE-2009-2040
CVE-2009-2040 affects Grestul 1.2. admin/options.php fails to restrict access, enabling remote attackers to bypass authentication and create administrative accounts via a manage_admin action in a direct request. This yields unauthorized privilege elevation (admin) and potential full control of th...