CVE-2008-6957

member.php in Crossday Discuz! Board allows remote attackers to reset passwords of arbitrary users via crafted (1) lostpasswd and (2) getpasswd actions, possibly involving predictable generation of the id parameter.
Configurations

Configuration 1

cpe:2.3:a:discuz:discuz!:-:*:*:*:*:*:*:*

Information

Published : 2009-08-12 10:30

Updated : 2017-09-29 01:33


NVD link : CVE-2008-6957

Mitre link : CVE-2008-6957

Products Affected
CWE