Vulnerability CVE-2023-35134
Published: 2023-07-19   Modified: 2023-07-20

Description:



Weintek Weincloud v0.13.6

could allow an attacker to reset a password with the corresponding account??s JWT token only.

Type:

CWE-640

 (Weak Password Recovery Mechanism for Forgotten Password)

 References:
https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-04
Copyright 2026, cxsecurity.com

 

Back to Top