A SQL injection vulnerability exists in Rocket.Chat <v3.18.6, <v4.4.4 and <v4.7.3 which can allow an attacker to retrieve a reset password token through or a 2fa secret.
{
"versions": [
{
"introduced": "0"
},
{
"fixed": "3.18.6"
},
{
"introduced": "4.0.0"
},
{
"fixed": "4.4.4"
},
{
"introduced": "4.7.0"
},
{
"fixed": "4.7.3"
}
]
}