CVE-2005-4688
CVE-2005-4688 · MEDIUM Severity
AV:N/AC:L/AU:N/C:N/I:P/A:N
PunBB 1.2.9 does not require password entry when changing the e-mail address in an account's profile, which might allow an attacker to make an address change via a hijacked login session.
Learn more about our Web Application Penetration Testing UK.