Incorrect access control in the Forgot Your Password function of EMSigner v2.8.7 allows unauthenticated malicious users to access accounts of all registered users, including those with administrator privileges via a crafted password reset token.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emsigner emsigner 2.8.7 |