CVE-2022-3152

Unverified Password Change in phpfusion/phpfusion

CVSS 9.6 CRITICALEPSS 0.7%CWE-620

Unverified Password Change in GitHub repository phpfusion/phpfusion prior to 9.10.20.

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Affected products

phpfusion · phpfusion/phpfusion

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/phpfusion/phpfusion/commit/57c96d4a0c00e8e1e25100087654688123c6e991 https://huntr.dev/bounties/b3f888d2-5c71-4682-8287-42613401fd5a