Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2014-2269

modules/Users/ForgotPassword.php in vTiger 6.0 before Security Patch 2 allows remote attackers to reset the password for arbitrary users via a request containing the username, password, and confirmPassword parameters.

  • Published: Apr 22, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2014-2269
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.4
  • AV:N/AC:L/Au:N/C:N/I:P/A:P

CWEs:

Software From Fixed in
vtiger / vtiger_crm 6.0.0 6.0.0.x