Required CVE Record Information
Description
admin/settings.php in PayPal eStores allows remote attackers to bypass intended access restrictions and change the administrative password via a direct request with a modified NewAdmin parameter.
References 4 Total
- secunia.com: 33036 third-party-advisory
- exploit-db.com: 7367 exploit
- exchange.xforce.ibmcloud.com: paypalestores-settings-security-bypass(47203) vdb-entry
- osvdb.org: 50682 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- secunia.com: 33036 third-party-advisoryx_transferred
- exploit-db.com: 7367 exploitx_transferred
- exchange.xforce.ibmcloud.com: paypalestores-settings-security-bypass(47203) vdb-entryx_transferred
- osvdb.org: 50682 vdb-entryx_transferred