CVE-2008-5308
The Simple Forum 3.1d module for LoveCMS 1.6.2 Final exposes a weak access control that lets remote attackers change the administrator password via a direct request to modules/simpleforum/admin/index.php. This CVE describes an access-persistence risk without detailing specific exploit vectors bey...