CVE-2008-6473

Published: Mar 16, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

_blogadata/include/init_pass2.php in Blogator-script 0.95 allows remote attackers to change the password for arbitrary users via a modified "a" parameter with a "%" wildcard symbol in the b parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

5370

exploit

x_refsource_EXPLOIT-DB

20080405 Blogator-script 0.95 Change User Password Vulnerbility

mailing-list

x_refsource_BUGTRAQ

51227

vdb-entry

x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2008-6473

Description

Affected Products

References