VYPR
Unrated severityNVD Advisory· Published Dec 15, 2008· Updated Jun 16, 2026

CVE-2008-5567

CVE-2008-5567

Description

Cross-site request forgery (CSRF) vulnerability in admin/ad_settings.php in Bonza Cart 1.10 and earlier allows remote attackers to change the admin password via a logout action in conjunction with the NewAdmin, NewPass1, and NewPass2 parameters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:bonzacart:bonza_cart:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:bonzacart:bonza_cart:*:*:*:*:*:*:*:*range: <=1.10
    • (no CPE)range: <=1.10

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.