1 results (0.003 seconds)
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-15014 – CESNET theme-cesnet resetpassword.php insufficiently protected credentials
https://notcve.org/view.php?id=CVE-2016-15014
A vulnerability has been found in CESNET theme-cesnet up to 1.x on ownCloud and classified as problematic. Affected by this vulnerability is an unknown functionality of the file cesnet/core/lostpassword/templates/resetpassword.php. The manipulation leads to insufficiently protected credentials. Attacking locally is a requirement. Upgrading to version 2.0.0 is able to address this issue. • https://github.com/CESNET/theme-cesnet/commit/2b857f2233ce5083b4d5bc9bfc4152f933c3e4a6 https://github.com/CESNET/theme-cesnet/pull/1 https://github.com/CESNET/theme-cesnet/releases/tag/2.0.0 https://vuldb.com/?ctiid.217633 https://vuldb.com/?id.217633 • CWE-522: Insufficiently Protected Credentials •