CVE-2009-4222

Name of the Vulnerable Software and Affected Versions phpBazar versions 2.1.1fix and earlier

Description The issue allows remote attackers to gain access to the admin control panel without proper administrative authentication. This is possible by making a direct request to the admin control panel.

Recommendations For phpBazar versions 2.1.1fix and earlier, ensure that proper authentication mechanisms are implemented to restrict access to the admin control panel, specifically for the admin/admin.php page. As a temporary workaround, consider restricting direct access to the admin/admin.php page until a proper fix is applied.