oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Please assign CVE to PageKit Remote Password Reset Vulnerability

From: Sandeep Kamble <sandeepk.l337 () gmail com>
Date: Sat, 21 Jan 2017 22:28:47 +0530
Hi,

Please provide the CVE to following vulnerability.

Here you can find the vulnerability report:
https://securelayer7.net/download/pdf/SecureLayer7-Pentest-report-Pagekit-CMS.pdf

Download the Remote Password Exploit:
https://securelayer7.net/download/poc/password-reset-vulnerability-exploit-ruby-pagekit-cms.rb.txt

Fix from the PageKit CMS:
https://github.com/pagekit/pagekit/commit/e0454f9c037c427a5ff76a57e78dbf8cc00c268b


Thank you
SecureLayer7
Previous By Date Next
Previous By Thread Next

Current thread: