#1321 ✓resolved
Sachin Wagh

Exponent CMS 2.3.5-Change My Password Vulnerability

Reported by Sachin Wagh | December 24th, 2015 @ 09:02 AM | in 2.3.6 (closed)


Vulnerability Type : Exponent CMS 2.3.5-Change My Password Vulnerability
Vulnerable Version : 2.3.5
Severity: High
Author – Sachin Wagh (@tiger_tigerboy)


Exponent CMS allows to change password without knowing current password.

Credits & Authors
Sachin Wagh (@tiger_tigerboy)

Comments and changes to this ticket

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป

Bug Tracker for Exponent CMS

Shared Ticket Bins

People watching this ticket