GHSA-3276-p9f2-8q89, CVE-2010-3670
packagist/typo3/cms-frontend
Inadequate Encryption Strength
TYPO3 before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness during generation of a hash with the "forgot password" function.
All versions before 4.3.4, all versions starting from 4.4.0 before 4.4.1
Upgrade to versions 4.3.4, 4.4.1 or above.
2024-02-09
source |