CVE-2018-17298
9.8CRITICALAn issue was discovered in Enalean Tuleap before 10.5. Reset password links are not invalidated after a user changes its password.
Published: 9/21/2018Updated: 11/21/2024
Description
An issue was discovered in Enalean Tuleap before 10.5. Reset password links are not invalidated after a user changes its password.
AI AnalysisPowered by AI
Affected Products
enaleantuleap
References
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=4050b0aafd18346d9a6a06967bfb1170824dab17PatchVendor Advisory
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=b87d3b807f39c00371ebaa50f938cb0110113538Vendor Advisory
- https://tuleap.net/plugins/tracker/?aid=12219PatchVendor Advisory
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=4050b0aafd18346d9a6a06967bfb1170824dab17PatchVendor Advisory
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=b87d3b807f39c00371ebaa50f938cb0110113538Vendor Advisory
- https://tuleap.net/plugins/tracker/?aid=12219PatchVendor Advisory