CVE-2008-5670
Textpattern (Txp CMS) 4.0.5 is affected by a vulnerability in the password reset workflow: it does not require the old password, enabling a password change after session hijacking. This is documented across multiple sources (NVD/NVD-derived entries). Impact described as allowing remote attackers ...