CVE-2023-31287

Name of the Vulnerable Software and Affected Versions Serenity Serene versions prior to 6.7.0 StartSharp versions prior to 6.7.0

Description An issue was discovered where password reset links sent by email contain a token that remains valid even after the password reset, allowing it to be used again to change the password of the corresponding user. This token expires 3 hours after issuance and is sent as a query parameter when resetting. An attacker with access to the browser history can use the token again to change the password and take over the account.

Recommendations For versions prior to 6.7.0, update to version 6.7.0 or later to resolve the issue. As a temporary workaround, consider restricting access to password reset links and tokens to minimize the risk of exploitation. Avoid using the password reset feature until the issue is resolved, and ensure that browser history is cleared regularly to prevent token reuse.