Vulnerabilities (CVE)

Filtered by vendor 2daybiz Subscribe
Filtered by product Template Monster Clone
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-1767 1 2daybiz 1 Template Monster Clone 2024-02-04 5.0 MEDIUM N/A
admin/edituser.php in 2daybiz Template Monster Clone does not require administrative authentication, which allows remote attackers to modify arbitrary accounts via the (1) loginname, (2) password, (3) email, (4) firstname, or (5) lastname parameter.