Описание
An issue in the default configuration of the password reset function in LogicData eCommerce Framework v5.0.9.7000 allows attackers to bypass authentication and compromise user accounts via a bruteforce attack.
EPSS
Процентиль: 24%
0.0008
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-288
Связанные уязвимости
CVSS3: 5.3
github
6 месяцев назад
An issue in the default configuration of the password reset function in LogicData eCommerce Framework v5.0.9.7000 allows attackers to bypass authentication and compromise user accounts via a bruteforce attack.
EPSS
Процентиль: 24%
0.0008
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-288