Improper Authentication vulnerability in Apache OFBiz via Password-Change Logic Flaw Leading to Remote Code Execution This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue.CreditsMike ColeReferenceshttps://lists.apache.org/thread/yw4owrzl0yho1yx7oqxvr6xjkmln9tq8
