CVE-2009-1582 Information

Description

Million Dollar Text Links 1.0 does not properly restrict administrator access to admin.home.php which allows remote attackers to bypass intended restrictions and gain privileges via a direct request to admin.home.php after visiting admin.php.

Reference

http://osvdb.org/54204 http://secunia.com/advisories/34994 http://www.securityfocus.com/bid/34809 https://exchange.xforce.ibmcloud.com/vulnerabilities/50306 https://www.exploit-db.com/exploits/8605