CVE-2024-0491 | Huaxia ERP up to 3.1 UserController.java password recovery

Posted by Angelo Barbosa | Jan 12, 2024 | CVE

A vulnerability classified as problematic has been found in Huaxia ERP up to 3.1. Affected is an unknown function of the file src/main/java/com/jsh/erp/controller/UserController.java. The manipulation leads to weak password recovery.

This vulnerability is traded as CVE-2024-0491. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0491 | Huaxia ERP up to 3.1 UserController.java password recovery

Related Posts

CVE-2024-2972 | Floating Chat Widget Plugin up to 3.1.8 on WordPress Setting cross site scripting

CVE-2024-7145 | JetElements Plugin up to 2.6.20 on WordPress file inclusion

CVE-2024-45589 | RapidIdentity LTS/Cloud username denial of service

CVE-2023-44430 | Bentley View SKP File Parser use after free