CVE-2024-0186 | HuiRan Host Reseller System up to 2.0.0 HTTP POST Request findpass password recovery

Posted by Angelo Barbosa | Jan 1, 2024 | CVE

A vulnerability classified as problematic has been found in HuiRan Host Reseller System up to 2.0.0. Affected is an unknown function of the file /user/index/findpass?do=4 of the component HTTP POST Request Handler. The manipulation leads to weak password recovery.

This vulnerability is traded as CVE-2024-0186. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-0186 | HuiRan Host Reseller System up to 2.0.0 HTTP POST Request findpass password recovery

Related Posts

CVE-2024-7472 | lunary-ai lunary up to 1.4.9 API send-verification extractFirstName special elements into a different plane (special element injection)

CVE-2024-11241 | code-projects Job Recruitment 1.0 reset.php e sql injection

CVE-2024-0693 | EFS Easy File Sharing FTP 2.0 username denial of service

CVE-2024-4619 | Elementor Website Builder Plugin up to 3.21.4 on WordPress cross site scripting