4 matches found
CVE-2023-5840
creationtimestamp| type| source ---|---|--- 2024-01-09 06:51:35+00:00| seen| https://t.me/arpsyndicate/2721...
CVE-2023-5840 Weak Password Recovery Mechanism for Forgotten Password in linkstackorg/linkstack
Weak Password Recovery Mechanism for Forgotten Password in GitHub repository linkstackorg/linkstack prior to v4.2.9...
CVE-2023-5840
CVE-2023-5840 affects LinkStack prior to v4.2.9, describing a weak password recovery mechanism. The vulnerability enables password-reset-token leakage via Host header manipulation (password reset link hijacking) as demonstrated in public PoC contexts. The issue is confirmed across multiple source...
CVE-2023-5840 Weak Password Recovery Mechanism for Forgotten Password in linkstackorg/linkstack
Weak Password Recovery Mechanism for Forgotten Password in GitHub repository linkstackorg/linkstack prior to v4.2.9...