PT-2021-11745 · Unknown · Thinkadmin
Published
2021-03-03
·
Updated
2024-07-04
·
CVE-2020-35296
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
ThinkAdmin version 6
Description:
The issue concerns default administrator credentials in ThinkAdmin, allowing attackers to gain unrestricted access to the administrator dashboard.
Recommendations:
For ThinkAdmin version 6, change the default administrator credentials to secure ones as soon as possible to prevent unauthorized access. Consider temporarily restricting access to the administrator dashboard until the credentials are changed.
Exploit
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Thinkadmin