Froxlor before 0.9.35 uses the PHP rand function for random number generation, which makes it easier for remote attackers to guess the password reset token by predicting a value.
CPE | Name | Operator | Version |
---|---|---|---|
froxlor | eq | 0.9.27 | |
froxlor | eq | 0.9.32-rc1 | |
froxlor | eq | 0.9.34.2 | |
froxlor | eq | 0.9.21 | |
froxlor | eq | 0.9.24-rc1 | |
froxlor | eq | 0.9.33-rc2 | |
froxlor | eq | 0.9.19 | |
froxlor | eq | 0.9.27-rc1 | |
froxlor | eq | 0.9.30-rc1 | |
froxlor | eq | 0.9.29-rc1 |