Description
Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."
Remediation
References
Related Vulnerabilities
Grafana URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-29170)
Atlassian Jira CVE-2019-20403 Vulnerability (CVE-2019-20403)
WordPress Plugin Advanced Advertising System PHP Object Injection (1.3.1)
Apache 2.x version older than 2.0.47
WordPress Plugin Catchers Helpdesk and Ticket system for Support Cross-Site Scripting (1.0.3)