CVE-2008-6718

Name of the Vulnerable Software and Affected Versions U&M Software JustBookIt version 1.0

Description The issue allows remote attackers to have an unspecified impact by directly requesting certain scripts in the admin/ directory without requiring administrative authentication. The affected scripts include "user manual.php", "user config.php", "user kundnamn.php", "user kundlista.php", "user aktiva kunder.php", "database.php", and possibly "index.php".

Recommendations For U&M Software JustBookIt version 1.0, consider implementing proper administrative authentication for all scripts in the admin/ directory to prevent unauthorized access. As a temporary workaround, restrict access to the vulnerable scripts, such as "user manual.php", "user config.php", "user kundnamn.php", "user kundlista.php", "user aktiva kunder.php", "database.php", and "index.php", to minimize the risk of exploitation.