facturascripts/facturascripts is vulnerable to privilege escalation. The vulnerability exists in the newUserPassword
function in AppController.php
due to a lack of validation in the password field which allows an unauthorized user to access the user account.
CPE | Name | Operator | Version |
---|---|---|---|
facturascripts/facturascripts | le | v2021.81 | |
facturascripts/facturascripts | le | v2021.81 |