3 matches found
CVE-2019-16106
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to change the password of any user via the recruitmentonline/personalData/actacounttab.cfm txtNewUserName and hdNP fields...
CVE-2019-16106
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to change the password of any user via the recruitmentonline/personalData/actacounttab.cfm txtNewUserName and hdNP fields...
CVE-2019-16106
The CVE-2019-16106 entry affects the Recruitment module of Humanica Humatrix versions 7 1.0.0.203 and 1.0.0.681. An unauthenticated attacker can change a user’s password via the recruitment_online/personalData/act_acounttab.cfm parameters txtNewUserName and hdNP, enabling account compromise. The ...