2005-02-27 10:00:00
mitre
PUBLISHED
profile.php in PunBB 1.2.1 allows remote attackers to cause a denial of service (account lockout) by setting the users password to NULL.