CVE-2009-4675 Information

Description

admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication which allows remote attackers to change the admin password via an unspecified form submission.

Reference

http://www.exploit-db.com/exploits/8775 http://www.securityfocus.com/bid/35079 https://exchange.xforce.ibmcloud.com/vulnerabilities/50723