Description
admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication, which allows remote attackers to change the admin password via an unspecified form submission.
Exploits (1)
References (3)
Core 3
Core References
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/8775
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/50723
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/35079
Scores
EPSS
0.0241
EPSS Percentile
85.2%
Details
CWE
CWE-287
Status
published
Products (1)
mole-group/gastro_portal_\(restaurant_directory\)_script
Published
Mar 05, 2010
Tracked Since
Feb 18, 2026