CVE-2018-17298
9.8CRITICALAn issue was discovered in Enalean Tuleap before 10.5. Reset password links are not invalidated after a user changes its password.
Опубликовано: 9/21/2018Обновлено: 11/21/2024
Описание
An issue was discovered in Enalean Tuleap before 10.5. Reset password links are not invalidated after a user changes its password.
ИИ-АнализНа базе ИИ
Затронутые продукты
enaleantuleap
Ссылки
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=4050b0aafd18346d9a6a06967bfb1170824dab17PatchVendor Advisory
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=b87d3b807f39c00371ebaa50f938cb0110113538Vendor Advisory
- https://tuleap.net/plugins/tracker/?aid=12219PatchVendor Advisory
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=4050b0aafd18346d9a6a06967bfb1170824dab17PatchVendor Advisory
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=b87d3b807f39c00371ebaa50f938cb0110113538Vendor Advisory
- https://tuleap.net/plugins/tracker/?aid=12219PatchVendor Advisory