2020-02-10 12:17:55
mitre
PUBLISHED
MFScripts YetiShare v3.5.2 through v4.5.4 might allow an attacker to reset a password by using a leaked hash (the hash never expires until used).