CVE-2007-1249

Name of the Vulnerable Software and Affected Versions C1 Financial Services Contelligent version 9.1.4

Description The issue concerns the MoveSortedContentAction in C1 Financial Services Contelligent, which fails to check the additional environment security configuration. This oversight allows remote attackers with write permissions to reorder components.

Recommendations For version 9.1.4, consider restricting write permissions to prevent unauthorized component reordering until a patch is available. As a temporary workaround, review and monitor environment security configurations closely to minimize the risk of exploitation.