system/message.php in Admin News Tools 2.5 does not properly restrict access, which allows remote malicious users to post news messages via a direct request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adminnewstools admin news tools 2.5 |