A security flaw in FlatPress v1.4.1 allows users to change passwords without verifying the current password. This vulnerability can lead to unauthorized account modifications if exploited. #FlatPressVulnerability #PasswordBypass
Keypoints
- The vulnerability exists in FlatPress version 1.4.1 on Debian 12.
- Attackers can bypass current password verification when changing user passwords.
- The flaw is triggered during the password change process in the admin configuration menu.
- Affected systems may be at risk of unauthorized access and account compromise.
- Security updates or patches are necessary to mitigate this password change bypass issue.