Forgot Password Security Vulnerabilities and Issues — Forgot Password CVE List

MendixForgot Password

5 matches found

CVE•added 2022/03/08 11:31 a.m.•192 views

CVE-2022-26314

CVE-2022-26314 affects the Mendix Forgot Password Appstore module: affected versions are Mendix Forgot Password Appstore v3.3.0–v3.5.1 and Mendix 7 compatible versions prior to v3.2.2. The root cause is improper restriction of excessive authentication attempts, enabling unauthenticated brute-forc...

9.8CVSS9.3AI score0.01706EPSS

In wild

CVE•added 2022/03/08 11:31 a.m.•121 views

CVE-2022-26313

The CVE-2022-26313 entry concerns the Mendix Forgot Password Appstore module, affected in all versions 3.3.0 through 3.5.1. Multiple sources (Red Hat CVE, ICSA, CNVD, CNNVD, etc.) describe an Improper Access Control flaw in which a threat actor could hijack arbitrary user accounts via the sign-up...

9.8CVSS9.2AI score0.00451EPSS

CVE•added 2021/03/15 5:3 p.m.•41 views

CVE-2021-25672

The CVE-2021-25672 entry concerns the Mendix Forgot Password Appstore module, with an improper access control flaw affecting All Versions

8.8CVSS8.4AI score0.00336EPSS

CVE•added 2023/04/11 9:3 a.m.•39 views

CVE-2023-27464

CVE-2023-27464 affects Siemens Mendix Forgot Password module. Affected: Mendix Forgot Password (Mendix 7 compatible) < V3.7.1, Mendix Forgot Password (Mendix 8 compatible) < V4.1.1, Mendix Forgot Password (Mendix 9 compatible)

5.3CVSS5AI score0.00363EPSS

CVE•added 2023/10/10 10:21 a.m.•39 views

CVE-2023-43623

The CVE-2023-43623 vulnerability affects Siemens Mendix Forgot Password modules across multiple Mendix compatibility versions: 7 (<3.7.3), 8 (<4.1.3), 9 (<5.4.0), and 10 (

5.3CVSS5.1AI score0.0023EPSS