5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.5%
The Reset Password feature in Pagekit 1.0.17 gives a different response depending on whether the e-mail address of a valid user account is entered, which might make it easier for attackers to enumerate accounts.
github.com/pagekit/pagekit/issues/935