Description

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."

Remediation

References

CVE-2006-4247

Related Vulnerabilities

Moodle Improper Input Validation Vulnerability (CVE-2012-1168)

WordPress Plugin Fusion:Extension-Gallery Multiple Unspecified Vulnerabilities (1.0.4)

Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.1)

WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.24)

Coppermine Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3722)

Severity

Medium

Classification

CVE-2006-4247

Tags

Missing Update Known Vulnerabilities