Find real vulnerabilities before they ship
Vulnerability Database › packagist › CVE-2017-8385
Craft CMS before 2.6.2976 does not prevent modification of the URL in a forgot-password email message.
Base Score