CVE-2008-5568
Cross-site request forgery CSRF vulnerability in admin/settings.php in IPN Pro 3 1.44 and earlier allows remote attackers to change the admin password via a logout action in conjunction with the adminid, newpass1, and newpass2 parameters...