Weak Password Recovery Mechanism in Contao Versions 3.5.39 and 4.x before 4.7.3

Weak Password Recovery Mechanism in Contao Versions 3.5.39 and 4.x before 4.7.3

CVE-2019-10641 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Contao before 3.5.39 and 4.x before 4.7.3 has a Weak Password Recovery Mechanism for a Forgotten Password.

Learn more about our Web Application Penetration Testing UK.