pagekit/pagekit is vulnerable to information disclosure. The vulnerability exists as the ResetPasswordController returns an Unknown email address.
message when an email is not in the user database.
CPE | Name | Operator | Version |
---|---|---|---|
pagekit/pagekit | le | 1.0.17 |