Lucene search
+L

4 matches found

NVD
NVD
added 2023/04/27 3:15 a.m.26 views

CVE-2023-31286

An issue was discovered in Serenity Serene and StartSharp before 6.7.0. When a password reset request occurs, the server response leaks the existence of users. If one tries to reset a password of a non-existent user, an error message indicates that this user does not exist...

5.3CVSS5.3AI score0.01011EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/04/27 12:0 a.m.38 views

CVE-2023-31286

An issue was discovered in Serenity Serene and StartSharp before 6.7.0. When a password reset request occurs, the server response leaks the existence of users. If one tries to reset a password of a non-existent user, an error message indicates that this user does not exist...

5.5AI score0.01011EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/04/27 12:0 a.m.7 views

CVE-2023-31286

An issue was discovered in Serenity Serene and StartSharp before 6.7.0. When a password reset request occurs, the server response leaks the existence of users. If one tries to reset a password of a non-existent user, an error message indicates that this user does not exist...

5.2AI score0.01011EPSS
Exploits1References3
CVE
CVE
added 2023/04/27 12:0 a.m.67 views

CVE-2023-31286

Summary: CVE-2023-31286 affects Serenity Serene and StartSharp prior to 6.7.0. The issue arises during password reset requests, where the server response reveals whether a user exists. Specifically, attempting to reset a password for a non-existent user yields an error message indicating that the...

5.3CVSS5.5AI score0.01011EPSS
Exploits1References4Affected Software2
Rows per page
Query Builder