2 matches found
EUVD-2025-197621
Shopware 6's password recovery link does not expire after email change...
CVE-2020-27422
In Anuko Time Tracker v1.19.23.5311, the password reset link emailed to the user doesn't expire once used, allowing an attacker to use the same link to takeover the account...