Posted on

CVE-2010-3670 (typo3)

TYPO3 before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness during generation of a hash with the «forgot password» function.