3 matches found
CVE-2014-2269
modules/Users/ForgotPassword.php in vTiger 6.0 before Security Patch 2 allows remote attackers to reset the password for arbitrary users via a request containing the username, password, and confirmPassword parameters...
CVE-2014-2269
modules/Users/ForgotPassword.php in vTiger 6.0 before Security Patch 2 allows remote attackers to reset the password for arbitrary users via a request containing the username, password, and confirmPassword parameters...
CVE-2014-2269
CVE-2014-2269 affects vtiger CRM v6.0 prior to Security Patch 2. The vulnerability is in modules/Users/ForgotPassword.php and allows remote attackers to reset the password for arbitrary users by submitting a request containing username, password, and confirmPassword. This is a direct consequence ...