CVE-2009-4675

EUVD-2009-4639
admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication, which allows remote attackers to change the admin password via an unspecified form submission.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 84%
Affected Products (NVD)
VendorProductVersion
mole-groupgastro_portal_\(restaurant_directory\)_script
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.exploit-db.com/exploits/8775
http://www.securityfocus.com/bid/35079
https://exchange.xforce.ibmcloud.com/vulnerabilities/50723
http://www.exploit-db.com/exploits/8775
http://www.securityfocus.com/bid/35079
https://exchange.xforce.ibmcloud.com/vulnerabilities/50723