Description
Phorum 3.0.7 allows remote attackers to change the administrator password without authentication via an HTTP request for admin.php3 that sets step, option, confirm and newPssword variables.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Max Vision · textwebappsphp
https://www.exploit-db.com/exploits/20586
References (4)
Core 4
Core References
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2271
Exploit, Patch, Vendor Advisory mailing-list
x_refsource_bugtraq
http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.html
Various Sources x_refsource_misc
http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
Various Sources x_refsource_misc
http://hispahack.ccc.de/mi020.html
Scores
EPSS
0.0834
EPSS Percentile
92.3%
Details
Status
published
Products (1)
phorum/phorum
3.0.7
Published
Dec 31, 2000
Tracked Since
Feb 18, 2026