2daybiz » Template Monster Clone : Security Vulnerabilities, CVEs, Published In 2009
admin/edituser.php in 2daybiz Template Monster Clone does not require administrative authentication, which allows remote attackers to modify arbitrary accounts via the (1) loginname, (2) password, (3) email, (4) firstname, or (5) lastname parameter.
Max CVSS
5.0
EPSS Score
1.35%
Published
2009-05-22
Updated
2017-09-29
1 vulnerabilities found