IDCVSSSummaryLast (major) updatePublished
CVE-2020-15181 10.0
The Alfresco Reset Password add-on before version 1.2.0 relies on untrusted inputs in a security decision. Intruders can get admin's access to the system using the vulnerability in the project. Impacts all servers where this add-on is installed. The
30-09-2020 - 13:32 18-09-2020 - 18:15
CVE-2020-25728 6.5
The Reset Password add-on before 1.2.0 for Alfresco has a broken algorithm (involving an increment) that allows a malicious user to change any user's account password include the admin account.
25-09-2020 - 17:40 17-09-2020 - 17:15
CVE-2020-15181 10.0
The Alfresco Reset Password add-on before version 1.2.0 relies on untrusted inputs in a security decision. Intruders can get admin's access to the system using the vulnerability in the project. Impacts all servers where this add-on is installed. The
30-09-2020 - 13:32 18-09-2020 - 18:15
CVE-2020-25727 5.0
The Reset Password add-on before 1.2.0 for Alfresco suffers from CMIS-SQL Injection, which allows a malicious user to inject a query within the email input field.
25-09-2020 - 15:59 17-09-2020 - 17:15
CVE-2020-25728 6.5
The Reset Password add-on before 1.2.0 for Alfresco has a broken algorithm (involving an increment) that allows a malicious user to change any user's account password include the admin account.
25-09-2020 - 17:40 17-09-2020 - 17:15
Back to Top Mark selected
Back to Top