CVE-2026-2543 vichan-devel vichan Password Change pages.php unverified password change

🗓️ 16 Feb 2026 07:02:06Reported by VulDBType

CVE-2026-2543: vichan-devel vichan up to 5.1.5 allows unverified password changes via pages.php.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2026-2543	16 Feb 202607:02	–	attackerkb
CNNVD	vichan 授权问题漏洞	16 Feb 202600:00	–	cnnvd
CVE	CVE-2026-2543	16 Feb 202607:02	–	cve
EUVD	EUVD-2026-6121	16 Feb 202609:30	–	euvd
NVD	CVE-2026-2543	16 Feb 202607:17	–	nvd
Positive Technologies	PT-2026-8317	16 Feb 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-2543	17 Feb 202607:28	–	redhatcve
Vulnrichment	CVE-2026-2543 vichan-devel vichan Password Change pages.php unverified password change	16 Feb 202607:02	–	vulnrichment

[
  {
    "vendor": "vichan-devel",
    "product": "vichan",
    "versions": [
      {
        "version": "5.1.0",
        "status": "affected"
      },
      {
        "version": "5.1.1",
        "status": "affected"
      },
      {
        "version": "5.1.2",
        "status": "affected"
      },
      {
        "version": "5.1.3",
        "status": "affected"
      },
      {
        "version": "5.1.4",
        "status": "affected"
      },
      {
        "version": "5.1.5",
        "status": "affected"
      }
    ],
    "modules": [
      "Password Change Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/lakshayyverma/CVE-Discovery/blob/main/vichan.md

23 Feb 2026 10:06Current

CVSS 3.12.7

CVSS 32.7

CVSS 23.3

CVSS 45.1

EPSS0.00012