CVE-2006-2727 Information

Description

home/register.php in Eggblog before 3.0 allows remote attackers to change the password of administrators and possibly other users via a modified username parameter.

Reference

http://securityreason.com/securityalert/1005 http://www.nukedx.com/?viewdoc=36 http://www.securityfocus.com/archive/1/435284/100/0/threaded http://www.securityfocus.com/archive/1/435300/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/26833