The Admin Access With Levels plugin in osCommerce 1.5.1 allows remote malicious users to access files in the "admin/" directory by modifying the in_login parameter to a non-zero value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oscommerce oscommerce 1.5.1 |