Credentials Management Errors

CVE-2009-3180

High

7.5/10

Anantasoft Gazelle CMS 1.0 allows remote attackers to conduct a password reset for other users via a modified user parameter to renew.php.

Weaknesses in this category are related to the management of credentials.