exploitDog

CVE-2005-0288

Опубликовано: 11 янв. 2005

Источник: nvd

CVSS2: 3.6

EPSS Низкий

Описание

The change password functionality in Bottomline Webseries Payment Application does not require the old password when users enter a new password, which could allow remote authenticated users to change other users' passwords.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:bottomline:webseries_payment_application:4.0:*:*:*:*:*:*:*

EPSS

Процентиль: 54%

0.00318

Низкий

3.6 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5jw6-5695-7hfj

github

почти 4 года назад

The change password functionality in Bottomline Webseries Payment Application does not require the old password when users enter a new password, which could allow remote authenticated users to change other users' passwords.

EPSS

Процентиль: 54%

0.00318

Низкий

3.6 Low

CVSS2

Дефекты

NVD-CWE-Other