BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
[Full-disclosure] Magnolia CMS multiple access control vulnerabilities Jun 25 2013 03:46PM
Adrian Furtuna (adif2k8 gmail com)
Subject:
======
Multiple access control vulnerabilities in Magnolia CMS, Community and
Enterprise editions

CVE ID:
======
CVE-2013-4621

Summary:
========
A non-admin user (such as default users eric / peter) can access and
execute multiple administrative functionalities of the CMS by
accessing dir...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus