2 matches found
CVE-2010-2685
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request...
CVE-2010-2685
CVE-2010-2685 concerns Customer Paradigm PageDirector CMS. The issue arises from improper access control in siteadmin/adduser.php, allowing remote attackers to bypass restrictions and add administrative users via a direct request. The vulnerability is documented with a high severity (CVSS v2 base...