exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2021-25957

больше 4 лет назад

In “Dolibarr” application, v2.8.1 to v13.0.2 are vulnerable to account takeover via password reset functionality. A low privileged attacker can reset the password of any user in the application using the password reset link the user received through email when requested for a forgotten password.

CVSS3: 8.8

EPSS: Низкий

CVE-2021-25957

больше 4 лет назад

CVSS3: 8.8

EPSS: Низкий

CVE-2021-25957

больше 4 лет назад

In \u201cDolibarr\u201d application, v2.8.1 to v13.0.2 are vulnerable ...

CVSS3: 8.8

EPSS: Низкий

GHSA-c32w-3cqh-f6jx

больше 4 лет назад

Weak Password Recovery Mechanism for Forgotten Password

CVSS3: 8.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2021-25957 In “Dolibarr” application, v2.8.1 to v13.0.2 are vulnerable to account takeover via password reset functionality. A low privileged attacker can reset the password of any user in the application using the password reset link the user received through email when requested for a forgotten password.	CVSS3: 8.8	0% Низкий	больше 4 лет назад
CVE-2021-25957 In “Dolibarr” application, v2.8.1 to v13.0.2 are vulnerable to account takeover via password reset functionality. A low privileged attacker can reset the password of any user in the application using the password reset link the user received through email when requested for a forgotten password.	CVSS3: 8.8	0% Низкий	больше 4 лет назад
CVE-2021-25957 In \u201cDolibarr\u201d application, v2.8.1 to v13.0.2 are vulnerable ...	CVSS3: 8.8	0% Низкий	больше 4 лет назад
GHSA-c32w-3cqh-f6jx Weak Password Recovery Mechanism for Forgotten Password	CVSS3: 8.8	0% Низкий	больше 4 лет назад

Уязвимостей на страницу