VYPR
Unrated severityNVD Advisory· Published Jul 6, 2006· Updated Jun 16, 2026

CVE-2006-3398

CVE-2006-3398

Description

The "change password forms" in Taskjitsu before 2.0.1 includes password hashes in hidden form fields, which allows remote attackers to obtain sensitive information from the (1) Category Editor and (2) User Information editor.

Affected products

3
  • cpe:2.3:a:pkr_internet:taskjitsu:0.1:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:pkr_internet:taskjitsu:0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:pkr_internet:taskjitsu:2.0:*:*:*:*:*:*:*
    • (no CPE)range: <2.0.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.