Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Branda – White Label & Branding, Free Login Page Customizer <= 3.4.29 - Unauthenticated Privilege Escalation via Account Takeover
Cap-go - Account Lockout via 2FA Misconfiguration on Unverified Email
Apostrophe has a Weak Password Recovery Mechanism for Forgotten Password and Improper Input Validation
PbootCMS Password MemberController.php retrieve password recovery
LimeSurvey Password Reset Host Header Injection Discloses Reset Token
OUSL-GROUP-BrinaryBrains School Student Management System Forgot Password Endpoint Login.php ajax_forgot_password password recovery
Simple History – Track, Log, and Audit WordPress Changes <= 5.26.0 - Authenticated (Subscriber+) Account Takeover via Missing Authorization on Even...
phpMyFAQ - Unauthenticated Password Reset via User Password Update Endpoint
QianFox FoxCMS Admin.php edit password recovery
Tiandy Easy7 Integrated Management Platform API Endpoint updateUserPassword password recovery
AzuraCast: Password Reset Poisoning via Untrusted X-Forwarded-Host Header Leads to Account Takeover and 2FA Bypass
LatePoint <= 5.5.0 - Unauthenticated Account Takeover via Weak Password Recovery Mechanism
phpBB before 3
D-Link M60 httpd password recovery
blueprintUE: Password Reset Tokens Have No Expiry Window
OpenAEV's Improper Password Reset Token Management Leads to Unauthenticated Account Takeover and Platform Compromise
Dell Client Platform BIOS contains a Weak Password Recovery Mechanism vulnerability
Weak Password Recovery Mechanism for Forgotten Password in chamilo/chamilo-lms
Payload has Unvalidated Input in Password Recovery Endpoints
Membership Plugin – Restrict Content <= 3.2.24 - Unvalidated Redirect in Password Reset Flow via rcp_redirect
Showing 1 - 20 of 1,000+ results