3 matches found
CVE-2009-2558
system/message.php in Admin News Tools 2.5 does not properly restrict access, which allows remote attackers to post news messages via a direct request...
CVE-2009-2558
system/message.php in Admin News Tools 2.5 does not properly restrict access, which allows remote attackers to post news messages via a direct request...
CVE-2009-2558
CVE-2009-2558 affects Admin News Tools 2.5. The vulnerability is a failure to properly restrict access in system/message.php, enabling remote attackers to post news messages via a direct request. NVD lists a CVSSv2 base score of 7.5 (High) with NETWORK attack vector, LOW attack complexity, and pa...