VYPR
Critical severity9.8NVD Advisory· Published Jun 22, 2009· Updated Jun 16, 2026

CVE-2009-2168

CVE-2009-2168

Description

cpanel/login.php in EgyPlus 7ammel (aka 7ml) 1.0.1 and earlier sends a redirect to the web browser but does not exit when the supplied credentials are incorrect, which allows remote attackers to bypass authentication by providing arbitrary username and password parameters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Egyplus/7ammel2 versions
    cpe:2.3:a:egyplus:7ammel:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:egyplus:7ammel:*:*:*:*:*:*:*:*range: <=1.0.1
    • (no CPE)range: <=1.0.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.