CVE-2021-29023
InvoicePlane 1.5.11 doesn’t have any rate-limiting for password reset and the reset token is generated using a weak mechanism that is predictable.
Source: CVE-2021-29023
CVE-2021-29023
InvoicePlane 1.5.11 doesn’t have any rate-limiting for password reset and the reset token is generated using a weak mechanism that is predictable.
Source: CVE-2021-29023