CVE-2008-5670

Textpattern (aka Txp CMS) 4.0.5 does not ask for the old password during a password reset, which makes it easier for remote attackers to change a password after hijacking a session.
Configurations

Configuration 1

cpe:2.3:a:textpattern:textpattern:4.0.5:*:*:*:*:*:*:*

Information

Published : 2008-12-19 01:52

Updated : 2018-10-11 08:56


NVD link : CVE-2008-5670

Mitre link : CVE-2008-5670

Products Affected
No products.
CWE