CVE-2024-22646

An email address enumeration vulnerability exists in the password reset function of SEO Panel version 4.10.0. This allows an attacker to guess which emails exist on the system.
References
Link Resource
https://github.com/cassis-sec/CVE/tree/main/2024/CVE-2024-22646 Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:seopanel:seo_panel:4.10.0:*:*:*:*:*:*:*

History

03 Feb 2024, 00:28

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.3
First Time Seopanel
Seopanel seo Panel
References () https://github.com/cassis-sec/CVE/tree/main/2024/CVE-2024-22646 - () https://github.com/cassis-sec/CVE/tree/main/2024/CVE-2024-22646 - Exploit, Third Party Advisory
CPE cpe:2.3:a:seopanel:seo_panel:4.10.0:*:*:*:*:*:*:*
CWE CWE-209

30 Jan 2024, 07:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-01-30 07:15

Updated : 2024-02-28 20:54


NVD link : CVE-2024-22646

Mitre link : CVE-2024-22646

CVE.ORG link : CVE-2024-22646


JSON object : View

Products Affected

seopanel

  • seo_panel
CWE
CWE-209

Generation of Error Message Containing Sensitive Information