admin.php in Frax.dk Php Recommend 1.3 and previous versions does not require authentication when the user password is changed, which allows remote malicious users to gain administrative privileges via modified form_admin_user and form_admin_pass parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
frax php recommend |