Description
admin.php in MRCGIGUY The Ticket System 2.0 does not properly restrict access, which allows remote attackers to (1) obtain sensitive configuration information via the editconfig action or (2) change the administrator's password via the id parameter in an editop action.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by ThE g0bL!N · textwebappsphp
https://www.exploit-db.com/exploits/8917
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/51029
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/35350
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/8917
Scores
EPSS
0.0469
EPSS Percentile
89.4%
Details
CWE
CWE-264
Status
published
Products (1)
mrcgiguy/the_ticket_system
2.0
Published
Jun 16, 2009
Tracked Since
Feb 18, 2026