CVE-2009-4675

Mole Group Gastro Portal - Info Disclosure

Title source: llm

Description

admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication, which allows remote attackers to change the admin password via an unspecified form submission.

Exploits (1)

exploitdb WRITEUP VERIFIED

by G4N0K · textwebappsphp

https://www.exploit-db.com/exploits/8775

View Code ZIP pw:eip

References (3)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/50723

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/35079

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/8775

Scores

EPSS 0.0241

EPSS Percentile 84.9%

Classification

CWE

CWE-287

Status draft

Affected Products (1)

mole-group/gastro_portal_\(restaurant_directory\)_script

Timeline

Published Mar 05, 2010

Tracked Since Feb 18, 2026