exploitDog

GHSA-m9j4-4947-qrrp

Опубликовано: 21 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

A backdoor (aka BMSA-2009-07) was found in PyForum v1.0.3 where an attacker who knows a valid user email could force a password reset on behalf of that user.

A backdoor (aka BMSA-2009-07) was found in PyForum v1.0.3 where an attacker who knows a valid user email could force a password reset on behalf of that user.

Ссылки

EPSS

Процентиль: 74%

0.0085

Низкий

CVE ID

Связанные уязвимости

CVE-2009-5025

CVSS3: 7.5

nvd

около 6 лет назад

A backdoor (aka BMSA-2009-07) was found in PyForum v1.0.3 where an attacker who knows a valid user email could force a password reset on behalf of that user.

EPSS

Процентиль: 74%

0.0085

Низкий

CVE ID