CVE-2006-0684

2006-02-15T00:02:00
ID CVE-2006-0684
Type cve
Reporter cve@mitre.org
Modified 2018-10-19T15:45:00

Description

change_password.php in Virtual Hosting Control System (VHCS) 2.4.7.1 and earlier does not verify the old password when a user changes the password, which may allow remote attackers to gain unauthorized access.