3 matches found
Weak Password Recovery Mechanism for Forgotten Password
Overview phpmyfaq/phpmyfaq is a FAQ system for PHP and MySQL, PostgreSQL and other databases Affected versions of this package are vulnerable to Weak Password Recovery Mechanism for Forgotten Password via the updatePassword process. An attacker can gain unauthorized access to any user account,...
PT-2025-37325
Name of the Vulnerable Software and Affected Versions: iteachyou Dreamer CMS versions through 4.1.3.2 Description: A weakness exists in iteachyou Dreamer CMS related to weak password requirements during some unknown processing of the file /admin/user/updatePwd. Remote exploitation is possible, bu...
PT-2023-16444 · Xxl-Job · Xxl-Job
Name of the Vulnerable Software and Affected Versions: XXL-JOB version 2.3.1 Description: A vulnerability has been found in the New Password Handler component, specifically affecting some unknown functionality of the file /user/updatePwd. This issue leads to cross-site request forgery and can be...