CVE-2009-3180 Information

Description

Anantasoft Gazelle CMS 1.0 allows remote attackers to conduct a password reset for other users via a modified user parameter to renew.php.

Reference

http://secunia.com/advisories/33686 http://www.exploit-db.com/exploits/9425