CVE-2012-1828

Name of the Vulnerable Software and Affected Versions AutoFORM PDM Archive versions prior to 7.1

Description The issue concerns the lack of authorization requirements for administrative functions, allowing remote authenticated users to perform administrative actions. This can be achieved by leveraging knowledge of a hidden function, such as the password-change function.

Recommendations For versions prior to 7.1, update to version 7.1 or later to resolve the issue. As a temporary workaround, consider restricting access to administrative functions to minimize the risk of exploitation.