14 matches found
EUVD-2020-20995
Malware in sbrugna...
CVE-2020-28597
A predictable seed vulnerability exists in the password reset functionality of Epignosis EfrontPro 5.2.21. By predicting the seed it is possible to generate the correct password reset 1-time token. An attacker can visit the password reset supplying the password reset token to reset the password o...
Epignosis EfrontPro Password Reset Vulnerability
Epignosis EfrontPro is a software application from Epignosis, Inc. An enterprise learning management system designed to deliver the most demanding and complex learning ecosystems beg... A security vulnerability exists in Epignosis EfrontPro version 5.2.21, which can be exploited by an attacker to...
CVE-2020-28597
A predictable seed vulnerability exists in the password reset functionality of Epignosis EfrontPro 5.2.21. By predicting the seed it is possible to generate the correct password reset 1-time token. An attacker can visit the password reset supplying the password reset token to reset the password o...
CVE-2020-28597
A predictable seed vulnerability exists in the password reset functionality of Epignosis EfrontPro 5.2.21. By predicting the seed it is possible to generate the correct password reset 1-time token. An attacker can visit the password reset supplying the password reset token to reset the password o...
Default credentials
A predictable seed vulnerability exists in the password reset functionality of Epignosis EfrontPro 5.2.21. By predicting the seed it is possible to generate the correct password reset 1-time token. An attacker can visit the password reset supplying the password reset token to reset the password o...
CVE-2020-28597
A predictable seed vulnerability exists in the password reset functionality of Epignosis EfrontPro 5.2.21. By predicting the seed it is possible to generate the correct password reset 1-time token. An attacker can visit the password reset supplying the password reset token to reset the password o...
CVE-2020-28597
Epignosis EfrontPro 5.2.21 is affected by a password reset vulnerability where the reset token is generated from a predictable seed, enabling an attacker to reset passwords via the password-reset URL. Talos details show the hash is md5(reset_password_timestamp + login) and that the vulnerability ...
PT-2021-11567 · Epignosis · Epignosis Efrontpro
Name of the Vulnerable Software and Affected Versions: Epignosis EfrontPro version 5.2.21 Description: A predictable seed vulnerability exists in the password reset functionality. By predicting the seed, it is possible to generate the correct password reset 1-time token. An attacker can visit the...
Epignosis EfrontPro 安全漏洞
Epignosis EfrontPro is a software application from Epignosis, Inc. An enterprise learning management system designed to deliver the most demanding and complex learning ecosystems beg... A security vulnerability exists in Epignosis EfrontPro version 5.2.21, which can be exploited by an attacker to...
eFront Learning CMS 3.6.15.6 Cross Site Scripting
Document Title: =============== eFront Learning 3.6.15.6 CMS - Forum Persistent Title Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1761 Release Date: ============= 2016-02-23 Vulnerability Laboratory ID VL-ID:...
eFront Learning CMS 3.6.15.6 Cross Site Scripting
Document Title: =============== eFront 3.6.15.6 CMS – Message Attachment Persistent Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1765 Release Date: ============= 2016-02-24 Vulnerability Laboratory ID VL-ID:...
eFront 3.6.15.6 CMS – Attachment Cross Site Vulnerability
Document Title: =============== eFront 3.6.15.6 CMS – Attachment Cross Site Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1765 Release Date: ============= 2016-02-23 Vulnerability Laboratory ID VL-ID: ====================================...
eFront Learning 3.6.15.6 CMS - Persistent Web Vulnerability
Document Title: =============== eFront Learning 3.6.15.6 CMS - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1761 Release Date: ============= 2016-02-22 Vulnerability Laboratory ID VL-ID: ===================================...