CVE-2024-0425 | ForU CMS up to 2020-06-23 index.php password recovery

Inserito da Angelo Barbosa | Gen 11, 2024 | CVE

A vulnerability classified as critical was found in ForU CMS up to 2020-06-23. This vulnerability affects unknown code of the file /admin/index.php?act=reset_admin_psw. The manipulation leads to weak password recovery.

This vulnerability was named CVE-2024-0425. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-0425 | ForU CMS up to 2020-06-23 index.php password recovery

Post correlati

CVE-2024-0566 | Smart Manager Plugin up to 8.27.x on WordPress sql injection

CVE-2024-20798 | Adobe Illustrator up to 27.9.2/28.3 out-of-bounds (apsb24-25)

CVE-2024-22270 | VMware Workstation/Fusion Host Guest File Sharing information disclosure

CVE-2024-31380 | Soflyy Oxygen Builder Plugin up to 4.8.1 on WordPress code injection