Lucene search
@huntrdevCVELIST:CVE-2022-0777HistoryMar 01, 2022 - 8:50 a.m.
CVE-2022-0777 Weak Password Recovery Mechanism for Forgotten Password in microweber/microweber
2022-03-0108:50:09
CWE-640
@huntrdev
www.cve.org
7.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
30.5%
Weak Password Recovery Mechanism for Forgotten Password in GitHub repository microweber/microweber prior to 1.3.
CNA Affected
[
{
"product": "microweber/microweber",
"vendor": "microweber",
"versions": [
{
"lessThan": "1.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
veracode
veracode
Authentication Bypass
2022-03-02 06:50:28
github
github
Rate limit missing in microweber
2022-03-02 00:00:19
huntr
huntr
Weak Password Recovery Mechanism for Forgotten Password
2022-02-25 11:36:45
osv
osv
CVE-2022-0777
2022-03-01 09:15:07
Rate limit missing in microweber
2022-03-02 00:00:19
nvd
nvd
CVE-2022-0777
2022-03-01 09:15:07
cve
cve
CVE-2022-0777
2022-03-01 09:15:07
prion
prion
Default credentials
2022-03-01 09:15:00
cnvd
cnvd
Microweber Email Bombing Vulnerability
2022-03-03 00:00:00
7.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
30.5%
Related for CVELIST:CVE-2022-0777