3 matches found
LinkStack Authorization Issues Vulnerability
LinkStack is a unique platform from LinkStack Open Source that provides an efficient solution for managing and sharing links online. An authorization issue vulnerability exists in versions prior to LinkStack v4.2.9 that stems from the absence of a weak password recovery mechanism for forgotten...
PT-2023-32372 · Linkstack · Linkstack
Name of the Vulnerable Software and Affected Versions: linkstack versions prior to 4.2.9 Description: The issue concerns a weak password recovery mechanism for forgotten passwords. Recommendations: For versions prior to 4.2.9, update to version 4.2.9 or later to resolve the issue...
CVE-2022-41933 Plaintext storage of password in org.xwiki.platform:xwiki-platform-security-authentication-default
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. When the reset a forgotten password feature of XWiki was used, the password was then stored in plain text in database. This only concerns XWiki 13.1RC1 and newer versions. Note that it only...