Description
Contao before 3.5.39 and 4.x before 4.7.3 has a Weak Password Recovery Mechanism for a Forgotten Password.
Remediation
References
Related Vulnerabilities
WordPress Plugin PDF & Print Button Joliprint Multiple Cross-Site Scripting Vulnerabilities (1.3.0)
WordPress Cookies Security Bypass Weakness (1.5 - 2.3.1)
Phusion Passenger Other Vulnerability (CVE-2014-1832)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14540)
WordPress Plugin NEX-Forms-Ultimate Form builder Multiple SQL Injection Vulnerabilities (4.0)