Insecure Password-Reset Hash Tethering in Textpattern 4.5.7

Insecure Password-Reset Hash Tethering in Textpattern 4.5.7

CVE-2015-8033 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

In Textpattern 4.5.7, the password-reset feature does not securely tether a hash to a user account.

Learn more about our User Device Pen Test.