CVE-2025-55342
Quipux 4.0.1 through e1774ac is affected by a vulnerability in the Administracion/usuarios/cambiar_password_olvido_validar.php endpoint that allows enumeration of usernames and access to the Ecuadorian identification number for all registered users via the txt_login parameter. The issue stems fro...