cve/CVE-2008-3681.md at d265b01db84ea263ae08fa7d2c08cb82387c2083

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 11:06:19 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

components/com_user/models/reset.php in Joomla! 1.5 through 1.5.5 does not properly validate reset tokens, which allows remote attackers to reset the "first enabled user (lowest id)" password, typically for the administrator.

POC

Reference

http://securityreason.com/securityalert/4157
https://www.exploit-db.com/exploits/6234

Github

No PoCs found on GitHub currently.

733 B Raw Blame History

CVE-2008-3681

Description

POC

Reference

Github

733 B

Raw Blame History