Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Jun 16, 2026
CVE-2005-4688
CVE-2005-4688
Description
PunBB 1.2.9 does not require password entry when changing the e-mail address in an account's profile, which might allow an attacker to make an address change via a hijacked login session.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.