Описание
Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | DNE | |
| edgy | released | 2.5.1-1 |
| feisty | released | 2.5.1-1 |
| gutsy | released | 2.5.1-1 |
| hardy | released | 2.5.1-1 |
| intrepid | released | 2.5.1-1 |
| jaunty | DNE | |
| karmic | DNE | |
| upstream | released | 2.5.1 |
Показывать по
10
Ссылки на источники
6.4 Medium
CVSS2
Связанные уязвимости
nvd
больше 19 лет назад
Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."
debian
больше 19 лет назад
Unspecified vulnerability in the Password Reset Tool before 0.4.1 on P ...
CVSS3: 9.1
github
почти 4 года назад
Plone allows anonymous users to reset any users password through the web via Password Reset Tool
6.4 Medium
CVSS2