Security Advisory

CVE-2019-18818

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-11-07 21:02:58
Last updated 2024-08-05 02:02:39
Assigner mitre
State PUBLISHED

Description

strapi before 3.0.0-beta.17.5 mishandles password resets within packages/strapi-admin/controllers/Auth.js and packages/strapi-plugin-users-permissions/controllers/Auth.js.