CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-6752

adminlogin/password.php in the Twitter Clone (TClone) plugin for ReVou Micro Blogging does not verify the original password before changing passwords, which allows remote attackers to change the administrator's password and gain privileges via a direct request with modified newpass1 and newpass2 parameters in a Change operation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.024

EPSS Ranking 84.5%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/51705
http://secunia.com/advisories/33247
http://www.securityfocus.com/bid/34851
https://www.exploit-db.com/exploits/7523
http://osvdb.org/51705
http://secunia.com/advisories/33247
http://www.securityfocus.com/bid/34851
https://www.exploit-db.com/exploits/7523

Products affected by CVE-2008-6752

Revou » Revou » Version: Any

cpe:2.3:a:revou:revou:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-6752

Products

Pricing

Contact Us