CVE-2013-6828 Information

Description

admin/management.html in PineApp Mail-SeCure allows remote attackers to bypass authentication and perform a sys_usermng operation via the it parameter.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0133.html