Multiple Products Forgotten Password Feature CAPTCHA Security Bypass Vulnerability
Multiple products are prone to a security-bypass vulnerability that occurs in the forgotten password feature.
An attacker can exploit this issue to gain access to user passwords of the affected application or perform other automated attacks.
The vulnerability occurs in the following products:
- PHP-Nuke 8.1 FINAL
- PHP Nuke 7.0
- 123tkshop 0.9.1
- phpMyBitTorrent 1.2.2
- torrentflux 2.3
- e107 0.7.11
- webZE 0.5.9
- Labgab Project 1.1