Description
The Admin Access With Levels plugin in osCommerce 1.5.1 allows remote attackers to access files in the "admin/" directory by modifying the in_login parameter to a non-zero value.
Remediation
References
Related Vulnerabilities
WordPress Plugin YITH WooCommerce Ajax Search Unspecified Vulnerability (1.2.7)
IBM WebSEAL Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2018-1803)
Jenkins CVE-2023-27902 Vulnerability (CVE-2023-27902)
WordPress Plugin QR Redirector Security Bypass (1.5)
WordPress Plugin Testimonial Slider Multiple Cross-Site Scripting Vulnerabilities (1.2.5)