2006-06-01 10:00:00
mitre
PUBLISHED
home/register.php in Eggblog before 3.0 allows remote attackers to change the password of administrators and possibly other users via a modified username parameter.