2 matches found
CVE-2009-4222
phpBazar 2.1.1fix and earlier does not require administrative authentication for admin/admin.php, which allows remote attackers to obtain access to the admin control panel via a direct request...
CVE-2009-4222
phpBazar 2.1.1fix and earlier is affected by CVE-2009-4222: it does not require administrative authentication for admin/admin.php, allowing remote attackers to access the admin control panel via a direct request. Affected versions are 2.1.1fix and earlier. The Red Hat entry confirms the same desc...