2020-09-03 14:19:27
mitre
PUBLISHED
eramba c2.8.1 and Enterprise before e2.19.3 has a weak password recovery token (createHash has only a million possibilities).