Payload has Unvalidated Input in Password Recovery Endpoints

Payload is a free and open source headless content management system. Prior to version 3.79.1 in @payloadcms/graphql and payload, a vulnerability in the password recovery flow could allow an unauthenticated attacker to perform actions on behalf of a user who initiates a password reset. This issue has been patched in version 3.79.1 for @payloadcms/graphql and payload.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

对假设不可变Web参数的外部可控制

Payload 授权问题漏洞

Payload是一个使用 TypeScript、Node.js、React 和 MongoDB 构建的 Headless CMS 和应用程序框架。 Payload 3.79.1之前版本存在授权问题漏洞，该漏洞源于密码恢复流程存在缺陷，可能导致未经验证的攻击者代表发起密码重置的用户执行操作。

N/A

N/A