3 matches found
CVE-2008-4427
changepassword.php in Phlatline's Personal Information Manager pPIM 1.0 and earlier does not require administrative authentication, which allows remote attackers to change arbitrary passwords...
CVE-2008-4427
CVE-2008-4427 affects Phlatline’s Personal Information Manager (pPIM) up to version 1.0. The vulnerability is that changepassword.php does not require administrative authentication, enabling remote attackers to change arbitrary user passwords. This is the explicitly described impact in the CVE en...
CVE-2008-4427
changepassword.php in Phlatline's Personal Information Manager pPIM 1.0 and earlier does not require administrative authentication, which allows remote attackers to change arbitrary passwords...