CVE-2008-5670

2008-12-19T01:52:00
ID CVE-2008-5670
Type cve
Reporter cve@mitre.org
Modified 2018-10-11T20:56:00

Description

Textpattern (aka Txp CMS) 4.0.5 does not ask for the old password during a password reset, which makes it easier for remote attackers to change a password after hijacking a session.