HomePentest-Tools.com Logo

ATutor <= 2.2.4 Access Control Vulnerability CVE-2021-43498

Severity
CVSSv3 Score
7.5
Vulnerability description

Atutor is prone to an access control vulnerability. This VT has been merged into the VT ATutor <= 2.2.4 Multiple Vulnerabilities (OID: 1.3.6.1.4.1.25623.1.0.127055).

Risk description

Weak password reset hash in password_reminder.php lead to access control vulnerability.

Recommendation

No solution was made available by the vendor. Note: The product is End of Life (EOL) and will not receive updates anymore.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Apr 8, 2022
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available