CVE-2026-31283 | Totara LMS up to 19.1.5 Forgot Password API excessive authentication

Inserito da Angelo Barbosa | Apr 13, 2026 | CVE

A vulnerability was found in Totara LMS up to 19.1.5. It has been classified as problematic. This vulnerability affects unknown code of the component Forgot Password API. The manipulation leads to improper restriction of excessive authentication attempts.

This vulnerability is listed as CVE-2026-31283. The attack may be initiated remotely. There is no available exploit.

CVE-2026-31283 | Totara LMS up to 19.1.5 Forgot Password API excessive authentication

Post correlati

CVE-2024-13239 | Drupal Two-factor Authentication up to 1.4.x weak authentication

CVE-2025-26062 | Intelbras RX 1500/RX 3000 prior 2.2.12 access control

CVE-2024-8668 | devitemsllc ShopLentor Plugin up to 2.9.7 on WordPress cross site scripting

CVE-2025-10561 | SICK TLOC100-100 unmaintained third party components