Описание
Gestsup before 3.2.10 allows account takeover through the password recovery functionality (remote). The affected component is the file forgot_pwd.php - it uses a weak algorithm for the generation of password recovery tokens (the PHP uniqueid function), allowing a brute force attack.
Ссылки
- Broken LinkThird Party Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- Broken LinkThird Party Advisory
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.2.10 (исключая)
cpe:2.3:a:gestsup:gestsup:*:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00588
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-307
Связанные уязвимости
github
больше 3 лет назад
Gestsup before 3.2.10 allows account takeover through the password recovery functionality (remote). The affected component is the file forgot_pwd.php - it uses a weak algorithm for the generation of password recovery tokens (the PHP uniqueid function), allowing a brute force attack.
EPSS
Процентиль: 69%
0.00588
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-307