← back
CVE-2008-7066

CVE-2008-7066

EPSS 2.5%
OpenForum 0.66 Beta allows remote attackers to bypass authentication and reset passwords of other users via a direct request with the update parameter set to 1 and modified user and password parameters.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/7291unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/46969https://www.exploit-db.com/exploits/7291http://www.securityfocus.com/bid/32536