3 matches found
CVE-2022-34530
An issue in the login and reset password functionality of Backdrop CMS v1.22.0 allows attackers to enumerate usernames via password reset requests and distinct responses returned based on usernames...
CVE-2022-34530
An issue in the login and reset password functionality of Backdrop CMS v1.22.0 allows attackers to enumerate usernames via password reset requests and distinct responses returned based on usernames...
CVE-2022-34530
CVE-2022-34530 affects Backdrop CMS v1.22.0. The issue lies in the login and password reset flow, allowing an attacker to enumerate usernames via password reset requests and receive distinct responses based on the username. The provided documents note a low confidentiality impact but do not speci...