CVE-2009-4945

Description

AdPeeps 8.5d1 has a default password of admin for the admin account, which makes it easier for remote attackers to obtain access via requests to index.php.

Affected products

• ATutor / acollab1.2 – 1.2

References

• MISChttp://www.securityfocus.com/archive/1/503855/100/0/threaded
• MISChttp://www.securityfocus.com/archive/1/503911/100/0/threaded
• VENDOR_ADVISORYhttp://forum.intern0t.net/intern0t-advisories/1049-intern0t-adpeeps-8-5d1-cross-site-scripting-html-injection-vulnerabilities.html