Описание
The "lost password" functionality in b2evolution before 6.7.9 allows remote attackers to reset arbitrary user passwords via a crafted request.
The "lost password" functionality in b2evolution before 6.7.9 allows remote attackers to reset arbitrary user passwords via a crafted request.
Связанные уязвимости
CVSS3: 7.5
nvd
около 9 лет назад
The "lost password" functionality in b2evolution before 6.7.9 allows remote attackers to reset arbitrary user passwords via a crafted request.
CVSS3: 7.5
debian
около 9 лет назад
The "lost password" functionality in b2evolution before 6.7.9 allows r ...