SecBoard
Zurück zur CVE-Übersicht

CVE-2026-30459

HIGH(7.1)

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N

Risk Signal Score18/100 — NIEDRIG
  • CVSS 7.1 — Hoch

EPSS-Score

0%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

7.1

Technische Schwere

Beschreibung

An issue in the Forgot Password feature of Daylight Studio FuelCMS v1.5.2 allows unauthenticated attackers to obtain the password reset token of a victim user via a crafted link placed in a valid e-mail message.

Referenzen