Punbb · Punbb · CVE-2005-0570
**Name of the Vulnerable Software and Affected Versions**
PunBB version 1.2.1
**Description**
The issue allows remote attackers to cause a denial of service, specifically an account lockout, by setting the user's password to NULL in the profile.php file.
**Recommendations**
For PunBB version 1.2.1, consider restricting access to the profile.php file to prevent unauthorized password changes until a patch is available.