CVE-2016-9482

CVE-2016-9482: PHP FormMail Generator generates PHP code for standard web forms, and the code generated is vulnerable to authentication bypass

Vendor Php Formmail
Product Generator
Weakness CWE-302
Published July 13, 2018
Last update August 6, 2024

CVSS base score

What the vulnerability does

01Description

Code generated by PHP FormMail Generator may allow a remote unauthenticated user to bypass authentication in the to access the administrator panel by navigating directly to /admin.php?mod=admin&func=panel

Key dates

02Disclosure timeline

July 13, 2018 CVE published
August 6, 2024 Record updated