Lucene search
GoogleOSV:CVE-2016-5100HistoryFeb 13, 2017 - 6:59 p.m.
CVE-2016-5100
2017-02-1318:59:00
Google
osv.dev
3
Froxlor before 0.9.35 uses the PHP rand function for random number generation, which makes it easier for remote attackers to guess the password reset token by predicting a value.
| CPE | Name | Operator | Version |
|---|---|---|---|
| froxlor | eq | 0.9.27 | |
| froxlor | eq | 0.9.32-rc1 | |
| froxlor | eq | 0.9.34.2 | |
| froxlor | eq | 0.9.21 | |
| froxlor | eq | 0.9.24-rc1 | |
| froxlor | eq | 0.9.33-rc2 | |
| froxlor | eq | 0.9.19 | |
| froxlor | eq | 0.9.27-rc1 | |
| froxlor | eq | 0.9.30-rc1 | |
| froxlor | eq | 0.9.29-rc1 |
Related
suse
suse
Security update for froxlor (moderate)
2021-03-20 00:00:00
Security update for froxlor (moderate)
2021-03-16 00:00:00
cve
cve
CVE-2016-5100
2017-02-13 18:59:00
prion
prion
Design/Logic Flaw
2017-02-13 18:59:00
github
github
Froxlor guessable password reset token
2022-05-17 02:57:53
openvas
openvas
openSUSE: Security Advisory for froxlor (openSUSE-SU-2021:0415-1)
2021-04-16 00:00:00
osv
osv
Froxlor guessable password reset token
2022-05-17 02:57:53
nessus
nessus
openSUSE Security Update : froxlor (openSUSE-2021-415)
2021-03-17 00:00:00
cvelist
cvelist
CVE-2016-5100
2017-02-13 18:00:00
nvd
nvd
CVE-2016-5100
2017-02-13 18:59:00