Цены Enterprise

CVE-2022-27157

9.8CRITICAL

pearweb < 1.32 is suffers from a Weak Password Recovery Mechanism via include/users/passwordmanage.php.

Опубликовано: 4/15/2022Обновлено: 11/21/2024

Посмотреть на NVD Посмотреть на MITRE

Описание

pearweb < 1.32 is suffers from a Weak Password Recovery Mechanism via include/users/passwordmanage.php.

ИИ-АнализНа базе ИИ

Затронутые продукты

phppearweb

Ссылки

https://github.com/pear/pearweb/commit/6447c174a6b4bd76d28ecca8543cbd24bf394f99#diff-204452a70c5b0b0084097fcff6aee77c2c38cb77a41c4b2dd0065fda37a7489c
PatchThird Party Advisory
https://github.com/pear/pearweb/commit/6447c174a6b4bd76d28ecca8543cbd24bf394f99#diff-204452a70c5b0b0084097fcff6aee77c2c38cb77a41c4b2dd0065fda37a7489c
PatchThird Party Advisory