Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-22646

An email address enumeration vulnerability exists in the password reset function of SEO Panel version 4.10.0. This allows an attacker to guess which emails exist on the system.

Published

2024-01-30T07:15:08.027

Last Modified

2025-06-04T21:15:37.543

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

Weaknesses

Type: Primary
CWE-209
Type: Secondary
CWE-209

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	seopanel	seo_panel	4.10.0	Yes

References

https://github.com/cassis-sec/CVE/tree/main/2024/CVE-2024-22646 Exploit, Third Party Advisory ([email protected])
https://github.com/cassis-sec/CVE/tree/main/2024/CVE-2024-22646 Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)