VYPR
Unrated severityNVD Advisory· Published Jan 21, 2021· Updated Aug 4, 2024

CVE-2020-28874

CVE-2020-28874

Description

reset-password.php in ProjectSend before r1295 allows remote attackers to reset a password because of incorrect business logic. Errors are not properly considered (an invalid token parameter).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.