Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Account Takeover via Reset Password Functionality in PAD CMS
Vulnerability Description
PAD CMS improperly initializes parameter used for password recovery, which allows to change password for any user that did not use reset password functionality. This issue affects all 3 templates: www, bip and www+bip. This product is End-Of-Life and producent will not publish patches for this vulnerability.
CVSS Information
N/A
Vulnerability Type
资源初始化缺失
Vulnerability Title
Polska Akademia Dostępności CMS 安全漏洞
Vulnerability Description
Polska Akademia Dostępności CMS是波兰Polska Akademia Dostępności公司的一个无障碍网站内容管理系统。 Polska Akademia Dostępności CMS存在安全漏洞,该漏洞源于密码恢复参数初始化不当,可能导致任意用户密码更改。
CVSS Information
N/A
Vulnerability Type
N/A