CVE-2009-2558

Publication date

2009-07-21 17:00:00

Family

mitre

State

PUBLISHED

Description

system/message.php in Admin News Tools 2.5 does not properly restrict access, which allows remote attackers to post news messages via a direct request.