CVE-2008-6957

Crossday Discuz! Board - Unauthenticated Password Reset via Predictable ID Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-6957. PoCs published by 80vul.

AI-analyzed exploit summary This exploit targets a password reset vulnerability in Discuz! by leveraging a weak random seed to predict the reset token. It automates the process of resetting a user's password to '123456' without proper authorization.

Description

member.php in Crossday Discuz! Board allows remote attackers to reset passwords of arbitrary users via crafted (1) lostpasswd and (2) getpasswd actions, possibly involving predictable generation of the id parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by 80vul · phpwebappsphp

https://www.exploit-db.com/exploits/7185

View Code ZIP pw:eip

This exploit targets a password reset vulnerability in Discuz! by leveraging a weak random seed to predict the reset token. It automates the process of resetting a user's password to '123456' without proper authorization.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Discuz! (version not specified, likely older versions)

No auth needed

Prerequisites: Target Discuz! installation · Valid username, email, and UID of the target user · Network access to the target server

MITRE ATT&CK