BIT-seopanel-2024-22646

See a problem?
Import Source
https://github.com/bitnami/vulndb/tree/main/data/seopanel/BIT-seopanel-2024-22646.json
JSON Data
https://api.osv.dev/v1/vulns/BIT-seopanel-2024-22646
Aliases
Published
2024-03-06T11:04:59.301Z
Modified
2024-03-06T11:25:28.861Z
Summary
[none]
Details

An email address enumeration vulnerability exists in the password reset function of SEO Panel version 4.10.0. This allows an attacker to guess which emails exist on the system.

Database specific 
{
    "severity": "Medium",
    "cpes": [
        "cpe:2.3:a:seopanel:seo_panel:4.10.0:*:*:*:*:*:*:*"
    ]
}
References

Affected packages

Bitnami / seopanel

Package

Name
seopanel
Purl
pkg:bitnami/seopanel

Severity

  • 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Affected ranges

Type
SEMVER
Events
Introduced
4.10.0
Last affected
4.10.0