header-logo
Suggest Exploit
vendor:
SLAED CMS
by:
Unknown
5.5
CVSS
MEDIUM
Unauthorized Access
284
CWE
Product Name: SLAED CMS
Affected Version From: SLAED CMS 4
Affected Version To: Unknown
Patch Exists: NO
Related CWE:
CPE: a:slaed:cms:4
Metasploit:
Other Scripts:
Platforms Tested: Unknown
Unknown

Unauthorized Access Vulnerability in SLAED CMS

Attackers can exploit this vulnerability to gain unauthorized access to installation scripts in SLAED CMS.

Mitigation:

No known mitigation or remediation for this vulnerability.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/38453/info

SLAED CMS is prone to an unauthorized-access vulnerability.

Attackers can exploit this issue to obtain unauthorized access to installation scripts.

SLAED CMS 4 is vulnerable; other versions may also be affected. 

The following example URIs are available:

http://www.example.com/sd/setup.php?op=language&lang=1

http://www.example.com/sd/install/index.php?op=language&lang=1