cbcvebase.
CVE-2014-2269
published 2014-04-22

CVE-2014-2269: modules/Users/ForgotPassword.php in vTiger 6.0 before Security Patch 2 allows remote attackers to reset the password for arbitrary users via a request…

PriorityP353medium6.4CVSS 2.0
AVNACLAuNCNIPAP
EXPLOIT
EPSS
15.66%
96.4th percentile
modules/Users/ForgotPassword.php in vTiger 6.0 before Security Patch 2 allows remote attackers to reset the password for arbitrary users via a request containing the username, password, and confirmPassword parameters.

Affected

1 ranges
VendorProductVersion rangeFixed in
vtigervtiger_crm
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.