Description

An email address enumeration vulnerability exists in the password reset function of SEO Panel version 4.10.0. This allows an attacker to guess which emails exist on the system.

Remediation

References

CVE-2024-22646

Related Vulnerabilities

WordPress Plugin Content Audit Blind SQL Injection (1.6)

Jboss EAP CVE-2023-4061 Vulnerability (CVE-2023-4061)

WordPress Plugin Widgets for WooCommerce Products on Elementor Security Bypass (1.0.5)

Mailman Other Vulnerability (CVE-2001-0290)

Oracle JRE CVE-2013-0432 Vulnerability (CVE-2013-0432)

Severity

Medium

Classification

CVE-2024-22646 CWE-209 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities