CVE-2009-4222

CVE-2009-4222 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

phpBazar 2.1.1fix and earlier does not require administrative authentication for admin/admin.php, which allows remote attackers to obtain access to the admin control panel via a direct request.

Learn more about our Web Application Penetration Testing UK.