Vulnerabilities > Mole Group > BUS Ticket Script

DATE CVE VULNERABILITY TITLE RISK
2010-03-05 CVE-2009-4674 Credentials Management vulnerability in Mole-Group products
admin/admin.php in Mole Group Sky Hunter Airline Ticket Sale Script and Bus Ticket Script allows remote attackers to change an arbitrary password via a modified user_id field.
network
low complexity
mole-group CWE-255
7.5
7.5