CVE-2009-2125

CVE-2009-2125 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

delete_bug.php in Elvin before 1.2.1 does not require administrative privileges, which allows remote authenticated users to bypass intended access restrictions and delete arbitrary bugs.

Learn more about our User Device Pen Test.