VYPR
Unrated severityNVD Advisory· Published Jul 30, 2019· Updated Aug 5, 2024

CVE-2017-18380

CVE-2017-18380

Description

edx-platform before 2017-08-03 allows attackers to trigger password-reset e-mail messages in which the reset link has an attacker-controlled domain name.

Affected products

2
  • edx-platform/edx-platformdescription
  • Edx/Edx Platformllm-fuzzy
    Range: <2017-08-03

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.