Critical severity9.1NVD Advisory· Published Dec 30, 2019· Updated Jun 17, 2026
CVE-2019-19735
CVE-2019-19735
Description
class.userpeer.php in MFScripts YetiShare 3.5.2 through 4.5.3 uses an insecure method of creating password reset hashes (based only on microtime), which allows an attacker to guess the hash and set the password within a few hours by bruteforcing.
Affected products
2- MFScripts/YetiSharedescription
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.