actions.php in WebPortal CMS 0.6-beta generates predictable passwords containing only the time of day, which makes it easier for remote attackers to obtain access to any account via a lostpass action.Referenceshttp://www.securityfocus.com/bid/27145https://www.exploit-db.com/exploits/4835https://exchange.xforce.ibmcloud.com/vulnerabilities/39486
