Description
TYPO3 before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness during generation of a hash with the "forgot password" function.
Remediation
References
Related Vulnerabilities
WordPress Plugin Package Quantity Discount Security Bypass (1.1.2)
WordPress Plugin Top 10-Popular posts for WordPress Cross-Site Request Forgery (2.9.4)
Oracle HTTP Server Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-25236)
WordPress Plugin WP-ViperGB Cross-Site Request Forgery (1.3.10)