CVE-2014-2269

2014-04-22T13:06:00
ID CVE-2014-2269
Type cve
Reporter cve@mitre.org
Modified 2014-04-22T16:31:00

Description

modules/Users/ForgotPassword.php in vTiger 6.0 before Security Patch 2 allows remote attackers to reset the password for arbitrary users via a request containing the username, password, and confirmPassword parameters.