logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2019-19735

Description

class.userpeer.php in MFScripts YetiShare 3.5.2 through 4.5.3 uses an insecure method of creating password reset hashes (based only on microtime), which allows an attacker to guess the hash and set the password within a few hours by bruteforcing.


Affected Software


CPE Name Name Version
mfscripts:yetishare mfscripts yetishare 4.5.3

Related