Описание
A weakness has been identified in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the file /model/user/resetPassword.php. Executing manipulation can lead to weak password recovery. The attack may be performed from remote. The exploit has been made available to the public and could be exploited.
Ссылки
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- Product
Уязвимые конфигурации
EPSS
5.3 Medium
CVSS3
9.1 Critical
CVSS3
5 Medium
CVSS2
Дефекты
Связанные уязвимости
A weakness has been identified in SourceCodester Inventory Management System 1.0. The affected element is an unknown function of the file /model/user/resetPassword.php. Executing manipulation can lead to weak password recovery. The attack may be performed from remote. The exploit has been made available to the public and could be exploited.
EPSS
5.3 Medium
CVSS3
9.1 Critical
CVSS3
5 Medium
CVSS2