CVE-2017-5619

Published: 2017-03-13T06:59Z

Last Modified: 2024-11-21T03:28Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1. Attackers can login with the hashed password itself (e.g., from the DB) instead of the valid password string. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt