CVE-2021-27200

In WoWonder 3.0.4, remote attackers can take over any account due to the weak cryptographic algorithm in recover.php. The code parameter is easily predicted from the time of day.
Configurations

Configuration 1

cpe:2.3:a:wowonder:wowonder:3.0.4:*:*:*:*:*:*:*

Information

Published : 2021-06-11 06:15

Updated : 2022-07-12 05:42


NVD link : CVE-2021-27200

Mitre link : CVE-2021-27200

Products Affected
No products.
CWE