CVE-2009-4675

critical

Description

admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication, which allows remote attackers to change the admin password via an unspecified form submission.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/50723

http://www.securityfocus.com/bid/35079

http://www.exploit-db.com/exploits/8775

Details

Source: Mitre, NVD

Published: 2010-03-05

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.01167

Detections

Analytics