Description
TYPO3 before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness during generation of a hash with the "forgot password" function.
Remediation
References
Related Vulnerabilities
WordPress 4.8.x Possible SQL Injection Vulnerability (4.8 - 4.8.2)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4285)
WordPress Plugin WooCommerce Product Table Lite Cross-Site Scripting (2.3.0)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4301)