4 matches found
CVE-2022-0777
Weak Password Recovery Mechanism for Forgotten Password in GitHub repository microweber/microweber prior to 1.3...
CVE-2022-0777 Weak Password Recovery Mechanism for Forgotten Password in microweber/microweber
Weak Password Recovery Mechanism for Forgotten Password in GitHub repository microweber/microweber prior to 1.3...
CVE-2022-0777 Weak Password Recovery Mechanism for Forgotten Password in microweber/microweber
Weak Password Recovery Mechanism for Forgotten Password in GitHub repository microweber/microweber prior to 1.3...
CVE-2022-0777
CVE-2022-0777 affects microweber/microweber prior to version 1.3. The issue is a weak password recovery mechanism caused by a missing rate limit on password reset emails, as described by the connected advisories (e.g., GHSA-7R79-MRP6-8MHQ and related Red Hat/NVD entries). The documented impact is...