CVE-2023-49274 | Umbraco CMS up to 8.18.9 Reset Password information disclosure (GHSA-8qp8-9rpw-j46c)

Inserito da Angelo Barbosa | Dic 12, 2023 | CVE

A vulnerability has been found in Umbraco CMS up to 8.18.9 and classified as problematic. This vulnerability affects unknown code of the component Reset Password Handler. The manipulation leads to information disclosure.

This vulnerability was named CVE-2023-49274. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49274 | Umbraco CMS up to 8.18.9 Reset Password information disclosure (GHSA-8qp8-9rpw-j46c)

Post correlati

CVE-2024-39932 | Gogs up to 0.13.0 Change Preview argument injection

CVE-2024-33153 | J2EEFAST 2.7.0 commentList sql_filter sql injection

CVE-2024-24806 | libuv up to 1.47.x src/unix/getaddrinfo.c uv_getaddrinfo server-side request forgery (GHSA-f74f-cvh7-c6q6)

CVE-2024-31216 | fluxcd source-controller up to 1.2.4 API log file (GHSA-v554-xwgw-hc3w)