Security Advisory

CVE-2006-0203

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-01-13 23:00:00

Last updated 2024-08-07 16:25:34

Assigner mitre

State PUBLISHED

Description

membership.asp in Mini-Nuke CMS System 1.8.2 and earlier does not verify the old password when changing a password, which allows remote attackers to change the passwords of other members via a lostpassnew action with a modified x parameter.

← Browse all CVEs View on cve.org ↗