I need your help, Comrades.
Found a glitch in the system authorization. If you turn on address: sitename.ru/admin it throws on sitename.ru/site/login it's okay, I thought so. Until I moved to the address sitename.ru/admin/category instead of category , you can substitute any other controller that exists. I calmly turn and the site opens the admin panel without authorization.
As such it is possible to fix it?