{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-26T21:46:10.072","vulnerabilities":[{"cve":{"id":"CVE-2019-20061","sourceIdentifier":"cve@mitre.org","published":"2020-02-10T13:15:11.893","lastModified":"2026-06-17T02:29:55.363","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The user-introduction email in MFScripts YetiShare v3.5.2 through v4.5.4 may leak the (system-picked) password if this email is sent in cleartext. In other words, the user is not allowed to choose their own initial password."},{"lang":"es","value":"El correo electrónico de introducción del usuario en MFScripts YetiShare versiones v3.5.2 hasta v4.5.4, puede filtrar la contraseña (seleccionada por el sistema) si este correo electrónico es enviado en texto sin cifrar. En otras palabras, el usuario no está habilitado para elegir su propia contraseña inicial."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-319"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mfscripts:yetishare:*:*:*:*:*:*:*:*","versionStartIncluding":"3.5.2","versionEndIncluding":"4.5.4","matchCriteriaId":"24B6FE06-6620-48FC-9AD3-6E9FA7D2793F"}]}]}],"references":[{"url":"https://medium.com/%40jra8908/yetishare-3-5-2-4-5-4-multiple-vulnerabilities-927d17b71ad","source":"cve@mitre.org"},{"url":"https://mfscripts.com/","source":"cve@mitre.org","tags":["Product"]},{"url":"https://yetishare.com/","source":"cve@mitre.org","tags":["Product"]},{"url":"https://medium.com/%40jra8908/yetishare-3-5-2-4-5-4-multiple-vulnerabilities-927d17b71ad","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://mfscripts.com/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Product"]},{"url":"https://yetishare.com/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Product"]}]}}]}