| Max CVSS | 6.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-25727 | 5.0 |
The Reset Password add-on before 1.2.0 for Alfresco suffers from CMIS-SQL Injection, which allows a malicious user to inject a query within the email input field.
|
20-01-2021 - 14:26 | 17-09-2020 - 17:15 | |
| CVE-2020-25728 | 6.5 |
The Reset Password add-on before 1.2.0 for Alfresco has a broken algorithm (involving an increment) that allows a malicious user to change any user's account password include the admin account.
|
25-09-2020 - 17:40 | 17-09-2020 - 17:15 | |
| CVE-2020-25728 | 6.5 |
The Reset Password add-on before 1.2.0 for Alfresco has a broken algorithm (involving an increment) that allows a malicious user to change any user's account password include the admin account.
|
25-09-2020 - 17:40 | 17-09-2020 - 17:15 | |
| CVE-2020-25727 | 5.0 |
The Reset Password add-on before 1.2.0 for Alfresco suffers from CMIS-SQL Injection, which allows a malicious user to inject a query within the email input field.
|
25-09-2020 - 15:59 | 17-09-2020 - 17:15 |