2 matches found
CVE-2020-23360
oscommerce v2.3.4.1 has a functional problem in user registration and password rechecking, where a non-identical password can bypass the checks in /catalog/admin/administrators.php and /catalog/passwordreset.php...
CVE-2020-23360
osCommerce v2.3.4.1 contains a functional flaw in the user registration and password rechecking flow where a non-identical password can bypass validation in /catalog/admin/administrators.php and /catalog/password_reset.php. The connected records do not provide additional technical specifics (e.g....