CVE-2008-5567

Cross-site request forgery (CSRF) vulnerability in admin/ad_settings.php in Bonza Cart 1.10 and earlier allows remote attackers to change the admin password via a logout action in conjunction with the NewAdmin, NewPass1, and NewPass2 parameters.
Configurations

Configuration 1

cpe:2.3:a:bonzacart:bonza_cart:*:*:*:*:*:*:*:*

Information

Published : 2008-12-15 06:00

Updated : 2017-09-29 01:32


NVD link : CVE-2008-5567

Mitre link : CVE-2008-5567

Products Affected
No products.
CWE