2025-11-10 02:45:26
twcert
PUBLISHED
EIP Plus developed by Hundred Plus has a Weak Password Recovery Mechanism vulnerability, allowing unauthenticated remote attacker to predict or brute-force the forgot password link, thereby successfully resetting any users password.