CVE-2006-0684

2006-02-14T19:02:00
ID CVE-2006-0684
Type cve
Reporter NVD
Modified 2018-10-19T11:45:51

Description

change_password.php in Virtual Hosting Control System (VHCS) 2.4.7.1 and earlier does not verify the old password when a user changes the password, which may allow remote attackers to gain unauthorized access.