Zurück zur CVE-Übersicht
CVE-2026-30459
HIGH(7.1)CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N
Risk Signal Score18/100 — NIEDRIG
- CVSS 7.1 — Hoch
EPSS-Score
0%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
7.1
Technische Schwere
Beschreibung
An issue in the Forgot Password feature of Daylight Studio FuelCMS v1.5.2 allows unauthenticated attackers to obtain the password reset token of a victim user via a crafted link placed in a valid e-mail message.