TYPO3 Inadequate Encryption Strength Vulnerability - CVE-2010-3670 - Vulnerability Database

TYPO3 Inadequate Encryption Strength Vulnerability - CVE-2010-3670

Medium
Reference: CVE-2010-3670
Title: TYPO3 Inadequate Encryption Strength Vulnerability
Overview:

TYPO3 before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness during generation of a hash with the quotforgot passwordquot function.