← CVECheck
HomeVulnerabilities

CVE-2000-1228 — MEDIUM severity vulnerability (Phorum 3.0.7 allows remote attackers to change the administr)

Phorum 3.0.7 allows remote attackers to change the administrator password without authentication via an HTTP request for admin.php3 that sets step, option, confirm and newPssword variables.

CVE IDCVE-2000-1228
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2000-12-31
Last modified2026-04-16
DescriptionPhorum 3.0.7 allows remote attackers to change the administrator password without authentication via an HTTP request for admin.php3 that sets step, option, confirm and newPssword variables.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →