CVE-2008-5670

2008-12-18T20:52:02
ID CVE-2008-5670
Type cve
Reporter NVD
Modified 2009-01-29T01:59:49

Description

Textpattern (aka Txp CMS) 4.0.5 does not ask for the old password during a password reset, which makes it easier for remote attackers to change a password after hijacking a session.