Description

classes/admin.class.php in CubeCart 5.2.12 through 5.2.16 and 6.x before 6.0.7 does not properly validate that a password reset request was made, which allows remote attackers to change the administrator password via a recovery request with a space character in the validate parameter and the administrator email in the email parameter.

Remediation

References

CVE-2015-6928

Related Vulnerabilities

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-18260)

Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-3092)

WordPress Plugin Media from FTP Cross-Site Scripting (9.89)

ZenCart Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-4403)

WordPress Plugin Salon booking system Cross-Site Scripting (7.9.3)

Severity

Medium

Classification

CVE-2015-6928 CWE-284

Tags

Missing Update Known Vulnerabilities