EPSS
Percentile
73.9%
Versions of flintcms before version 1.1.10 are vulnerable to account takeover due to blind MongoDB injection in the password reset.
flintcms
Update to version 1.1.10 or later.