Improper Access Controls(Admin Path)

## Summary: Go to https://nin.mtn.ng/ then click on "Check your NIN Link Status" then right click and click on "Inpect" and admin path is display at web browser ../wp-admin/admin-ajax.html ## Steps To Reproduce: STEP 1: Go to https://nin.mtn.ng/ {F3021640} STEP 2: Click on "Check your NIN Link Status" {F3021641} STEP 3: Right click at the top of the page(On MTN Yellow Bar) and then click on "Inspect" {F3021642} ../wp-admin/admin-ajax.html Admin Path ## Impact 1.) View Sensitive Information 2.) Steal Customers details 3.) Install backdoor 4.) Access different Components 5.) Alter System