CVE-2006-0684

2006-02-14T19:02:00
ID CVE-2006-0684
Type cve
Reporter NVD
Modified 2017-07-19T21:29:58

Description

change_password.php in Virtual Hosting Control System (VHCS) 2.4.7.1 and earlier does not verify the old password when a user changes the password, which may allow remote attackers to gain unauthorized access.