Vulnerabilities > CVE-2010-5318 - Credentials Management vulnerability in Basic-Cms Sweetrice 0.6.7.1

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
basic-cms
CWE-255
exploit available
NVD
Published: 2015-01-03
Updated: 2024-11-21

Summary

The password-reset feature in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to modify the administrator's password by specifying the administrator's e-mail address in the email parameter.

Vulnerable Configurations

Part Description Count
Application
Basic-Cms
1

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionSweetRice CMS 0.6.7 Multiple Vulnerabilities. CVE-2010-5317,CVE-2010-5318. Webapps exploit for php platform
idEDB-ID:15413
last seen2016-02-01
modified2010-11-04
published2010-11-04
reporterHigh-Tech Bridge SA
sourcehttps://www.exploit-db.com/download/15413/
titlesweetrice CMS 0.6.7 - Multiple Vulnerabilities

References