b2evolution Credentials Management Errors Vulnerability - CVE-2016-9479 - Vulnerability Database

b2evolution Credentials Management Errors Vulnerability - CVE-2016-9479

High
Reference: CVE-2016-9479
Title: b2evolution Credentials Management Errors Vulnerability
Overview:

The quotlost passwordquot functionality in b2evolution before 6.7.9 allows remote attackers to reset arbitrary user passwords via a crafted request.