First published: Wed Apr 04 2001(Updated: )
PHP-Nuke 4.4.1a allows remote attackers to modify a user's email address and obtain the password by guessing the user id (UID) and calling user.php with the saveuser operator.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Francisco Burzi PHP-Nuke | =4.4.1a |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.