Weak reset token generation in SeedDMS v6.0.20 and v5.1.7 allows malicious users to execute a full account takeover via a brute force attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
seeddms seeddms 5.1.7 |
||
seeddms seeddms 6.0.20 |