2 matches found
PT-2024-32806 · Unknown · Lif Authentication Server
Name of the Vulnerable Software and Affected Versions: Lif Authentication Server versions prior to 1.7.3 Description: The issue is related to the account recovery system of the Lif Authentication Server, where there is no check to ensure the user has received the recovery email and entered the...
Arbitrary User Password Change Vulnerability in AnyMacro Email System Used by Multiple Organizations
AnyMacro is a professional product and solution provider in the field of email and unified messaging. A security vulnerability exists in the AnyMacro email system due to the failure of the user password recovery function to properly verify user passwords. This vulnerability allows an attacker to...