Unrated severityNVD Advisory· Published Jul 6, 2006· Updated Jun 16, 2026
CVE-2006-3398
CVE-2006-3398
Description
The "change password forms" in Taskjitsu before 2.0.1 includes password hashes in hidden form fields, which allows remote attackers to obtain sensitive information from the (1) Category Editor and (2) User Information editor.
Affected products
3cpe:2.3:a:pkr_internet:taskjitsu:0.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:pkr_internet:taskjitsu:0.1:*:*:*:*:*:*:*
- cpe:2.3:a:pkr_internet:taskjitsu:2.0:*:*:*:*:*:*:*
- (no CPE)range: <2.0.1
Patches
Vulnerability mechanics
References
3- www.pkrinternet.com/download/RELEASE-NOTES.txtnvdURL Repurposed
- www.pkrinternet.com/taskjitsu/task/3400nvdURL Repurposed
- www.vupen.com/english/advisories/2006/2660nvd
News mentions
0No linked articles in our index yet.