Vulnerabilities

CVE-2011-2676

by Fred · 03/11/2011

The A-Form and A-Form bamboo before 1.3.6 and 2.x before 2.0.3, and A-Form PC and PC/Mobile before 3.1, plug-ins for Movable Type do not require administrative authentication, which allows remote authenticated users to modify data via unspecified vectors.

Date published : 2011-11-03

http://www.ark-web.jp/movabletype/a-form/docs/security_patch.html

http://www.ark-web.jp/movabletype/blog/2011/09/aform_update110927.html

Similar

Tags: Cybersecurity Alert