Vulnerabilities

CVE-2023-50172

by Fred · 10/01/2024

A recovery notification bypass vulnerability exists in the userRecoverPass.php captcha validation functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to the silent creation of a recovery pass code for any user.

Date published : 2024-01-10

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1897

Similar

Tags: Cybersecurity Alert