CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-26984

An issue in the password reset function of Peppermint v0.2.4 allows attackers to access the emails and passwords of the Tickets page via a crafted request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.9%

CVSS Severity

CVSS v3 Score 8.1

References

https://github.com/Peppermint-Lab/peppermint/tree/master
https://github.com/bypazs/CVE-2023-26984
https://peppermint.sh/
https://github.com/Peppermint-Lab/peppermint/tree/master
https://github.com/bypazs/CVE-2023-26984
https://peppermint.sh/

Products affected by CVE-2023-26984

Peppermint » Peppermint » Version: 0.2.4

cpe:2.3:a:peppermint:peppermint:0.2.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-26984

Products

Pricing

Contact Us