Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/19 12:0 a.m.1 views

CVE-2026-26744

A user enumeration vulnerability exists in FormaLMS 4.1.18 and below in the password recovery functionality accessible via the /lostpwd endpoint. The application returns different error messages for valid and invalid usernames allowing an unauthenticated attacker to determine which usernames are...

5.5AI score0.00293EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/19 12:0 a.m.2 views

CVE-2026-26744

A user enumeration vulnerability exists in FormaLMS 4.1.18 and below in the password recovery functionality accessible via the /lostpwd endpoint. The application returns different error messages for valid and invalid usernames allowing an unauthenticated attacker to determine which usernames are...

5.5AI score0.00293EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/19 12:0 a.m.21 views

CVE-2026-26744

A user enumeration vulnerability exists in FormaLMS 4.1.18 and below in the password recovery functionality accessible via the /lostpwd endpoint. The application returns different error messages for valid and invalid usernames allowing an unauthenticated attacker to determine which usernames are...

0.00293EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/18 7:53 p.m.2 views

CVE-2023-53943 GLPI 9.5.7 Username Enumeration Vulnerability via Lost Password Endpoint

GLPI 9.5.7 contains a username enumeration vulnerability in the lost password recovery mechanism that allows attackers to validate email addresses. Attackers can systematically test email addresses by submitting requests to the password reset endpoint and analyzing response differences to identif...

6.9CVSS6.6AI score0.00297EPSS
Exploits1References3
Openbugbounty
Openbugbounty
added 2017/09/10 6:26 p.m.8 views

studenten-wohnung.de XSS vulnerability

Vulnerable URL: http://www.studenten-wohnung.de/lostpassword.php Details: Description| Value ---|--- Patched:| No Latest check for patch:| 09.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 684328 VIP website status:| No Coordinated Disclosure Timeline:...

6.3AI score
Exploits0
Rows per page
Query Builder