Home

Description

A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login? module of eSoft Planner 3.24.08271-USA allows attackers to enumerate valid user e-mail accounts.

PUBLISHED Reserved 2024-10-08 | Published 2024-11-20 | Updated 2024-12-03 | Assigner mitre

References

github.com/esoft-planner-cve/esoft_planner_cve

cve.org (CVE-2024-48533)

nvd.nist.gov (CVE-2024-48533)

Download JSON