Unverified Password Change in GitHub repository pimcore/admin-ui-classic-bundle prior to 1.2.0.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HPimcore Admin Classic Bundle
APPPimcore≤ 1.1.4
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth Bypass
Powiązane podatności
CVE-2024-25625HIGH8.1ten sam produkt
Pimcore's Admin Classic Bundle provides a Backend UI for Pimcore. A potential security vulnerability has been ...
CVE-2024-23648HIGH8.8ten sam produkt
Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore. The password reset functionality...
CVE-2024-23646HIGH8.8ten sam produkt
Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore. The application allows users to ...
CVE-2023-49075HIGH8.4ten sam produkt
The Admin Classic Bundle provides a Backend UI for Pimcore. `AdminBundle\Security\PimcoreUserTwoFactorConditio...
CVE-2026-23495MEDIUM4.3ten sam produkt
Pimcore's Admin Classic Bundle provides a Backend UI for Pimcore. Prior to 2.2.3 and 1.7.16, the API endpoint ...