Vulnerabilities > Weak Password Recovery Mechanism for Forgotten Password
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-18 | CVE-2023-4214 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Apppresser The AppPresser plugin for WordPress is vulnerable to unauthorized password resets in versions up to, and including 4.2.5. | 9.8 |
| 2023-11-11 | CVE-2023-5959 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Byzoro Smart S85F Firmware V31R02B1001 A vulnerability, which was classified as problematic, was found in Byzoro Smart S85F Management Platform V31R02B10-01. | 4.3 |
| 2023-11-08 | CVE-2023-47107 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in THM Pilos PILOS is an open source front-end for BigBlueButton servers with a built-in load balancer. | 8.8 |
| 2023-10-31 | CVE-2023-46138 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Fit2Cloud Jumpserver JumpServer is an open source bastion host and maintenance security audit system that complies with 4A specifications. | 5.3 |
| 2023-10-29 | CVE-2023-5840 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Linkstack Weak Password Recovery Mechanism for Forgotten Password in GitHub repository linkstackorg/linkstack prior to v4.2.9. | 8.8 |
| 2023-10-10 | CVE-2023-44399 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Zitadel ZITADEL provides identity infrastructure. | 5.3 |
| 2023-09-29 | CVE-2023-5296 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Rockoa 1.1/15.X3Amdi/2.3.2 A vulnerability was found in Xinhu RockOA 1.1/2.3.2/15.X3amdi and classified as problematic. | 7.5 |
| 2023-09-27 | CVE-2023-43650 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Fit2Cloud Jumpserver JumpServer is an open source bastion host. | 7.4 |
| 2023-09-19 | CVE-2023-4096 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Fujitsu Arconte Aurea 1.5.0.0 Weak password recovery mechanism vulnerability in Fujitsu Arconte Áurea version 1.5.0.0, which exploitation could allow an attacker to perform a brute force attack on the emailed PIN number in order to change the password of a legitimate user. | 8.2 |
| 2023-09-07 | CVE-2023-34357 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Scshr HR Portal 7.3.2023.0510/7.3.2023.0705 Soar Cloud Ltd. | 7.8 |