Unrated severityNVD Advisory· Published Aug 25, 2009· Updated Jun 16, 2026
CVE-2009-2960
CVE-2009-2960
Description
CuteFlow 2.10.3 and 2.11.0_c does not properly restrict access to pages/edituser.php, which allows remote attackers to modify usernames and passwords via a direct request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/36099nvdExploit
- secunia.com/advisories/36349nvdVendor Advisory
- www.securityfocus.com/archive/1/506000/100/0/threadednvd
News mentions
0No linked articles in our index yet.