A vulnerability labeled as problematic has been found in FOSSBilling up to 0.7.2. Impacted is an unknown function of the component Password Reset Handler. Such manipulation leads to information disclosure.
This vulnerability is listed as CVE-2026-53646. The attack may be performed from remote. There is no available exploit.