User enumeration vulnerability in Password Recovery plugin 1.2 version for Roundcube, which could allow a remote malicious user to create a test script against the password recovery function to enumerate all users in the database.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
password recovery project password recovery 1.2 |