CVE-2025-51741

CVE-2025-51741 affects Veal98 Echo Open-Source Community System versions 2.2–2.3. An unauthenticated attacker can trigger the server to send email verification messages to arbitrary users via the /sendEmailCodeForResetPwd endpoint, potentially causing a denial of service to the server or downstre...