CVE-2019-20062

Description

MFScripts YetiShare v3.5.2 through v4.5.4 might allow an attacker to reset a password by using a leaked hash (the hash never expires until used).

PUBLISHED Reserved 2019-12-29 | Published 2020-02-10 | Updated 2024-08-05 | Assigner mitre

References

yetishare.com/

mfscripts.com/

medium.com/...5-2-4-5-4-multiple-vulnerabilities-927d17b71ad

yetishare.com/

mfscripts.com/

medium.com/...5-2-4-5-4-multiple-vulnerabilities-927d17b71ad

cve.org (CVE-2019-20062)

nvd.nist.gov (CVE-2019-20062)

Download JSON