CVE-2008-6473

_blogadata/include/init_pass2.php in Blogator-script 0.95 allows remote attackers to change the password for arbitrary users via a modified "a" parameter with a "%" wildcard symbol in the b parameter.
Configurations

Configuration 1

cpe:2.3:a:blogator-script:blogator-script:0.95:*:*:*:*:*:*:*

Information

Published : 2009-03-16 04:30

Updated : 2018-10-11 08:57


NVD link : CVE-2008-6473

Mitre link : CVE-2008-6473

Products Affected
No products.
CWE