| |
Vulnerability CVE-2022-45782
Published: 2023-02-01
Description: |
An issue was discovered in dotCMS core 5.3.8.5 through 5.3.8.15 and 21.03 through 22.10.1. A cryptographically insecure random generation algorithm for password-reset token generation leads to account takeover. |
References: |
https://www.dotcms.com/security/SI-66
|
|
|
Copyright 2024, cxsecurity.com
|
|
|