2017-02-13 18:00:00
mitre
PUBLISHED
Froxlor before 0.9.35 uses the PHP rand function for random number generation, which makes it easier for remote attackers to guess the password reset token by predicting a value.