CVE-2005-4688

2005-12-31T05:00:00
ID CVE-2005-4688
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:57:00

Description

PunBB 1.2.9 does not require password entry when changing the e-mail address in an account's profile, which might allow an attacker to make an address change via a hijacked login session.