A vulnerability has been identified in Mendix Forgot Password Appstore module (All versions >= V3.3.0 < V3.5.1), Mendix Forgot Password Appstore module (Mendix 7 compatible) (All versions < V3.2.2). Initial passwords are generated in an insecure manner. This could allow an unauthenticated remote malicious user to efficiently brute force passwords in specific situations.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mendix forgot password |