Description

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."

Remediation

References

CVE-2006-4247

Related Vulnerabilities

WordPress Plugin NewStatPress Cross-Site Scripting (1.2.4)

MySQL CVE-2019-2803 Vulnerability (CVE-2019-2803)

Jboss EAP Improper Validation of Integrity Check Value Vulnerability (CVE-2023-48795)

WordPress Plugin About Me Page Cross-Site Scripting (4.0)

WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Arbitrary File Deletion (1.0.78)

Severity

Medium

Classification

CVE-2006-4247

Tags

Missing Update Known Vulnerabilities