Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.4
CVSSv2

CVE-2008-6473

Published: 16/03/2009 Updated: 11/10/2018
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
VMScore: 645
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P
Subscribe to Blogator-script

Vulnerability Summary

_blogadata/include/init_pass2.php in Blogator-script 0.95 allows remote malicious users to change the password for arbitrary users via a modified "a" parameter with a "%" wildcard symbol in the b parameter.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

blogator-script blogator-script 0.95

Exploits

Exploit DB: Blogator-script 0.95 - Change User Password
############################################################################## # # # :::::Blogator-script 095 Change User Password Vulnerbility :::: # ######################################################### ...

References

CWE-255http://osvdb.org/51227https://www.exploit-db.com/exploits/5370http://www.securityfocus.com/archive/1/490501/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/5370/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook