PT-2024-19519 · Seo Panel · Seo Panel
Davide Bernacchia
·
Published
2024-01-30
·
Updated
2025-06-04
·
CVE-2024-22646
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
SEO Panel version 4.10.0
Description
An email address enumeration issue exists in the password reset function. This allows an attacker to guess which emails exist on the system.
Recommendations
For SEO Panel version 4.10.0, consider disabling the password reset function until a patch is available. Restrict access to the password reset functionality to minimize the risk of exploitation.
Exploit
Fix
Generation of Error Message Containing Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Seo Panel