CVE-2026-26895 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

User enumeration vulnerability in /pwreset.php in osTicket v1.18.2 allows remote attackers to enumerate valid usernames registered in the platform.
Medium CVSS: 5.3

CVE-2026-26895

User enumeration vulnerability in /pwreset.php in osTicket v1.18.2 allows remote attackers to enumerate valid usernames registered in the platform.
Vendor
-
Product
-
CWE
CWE-203
Yayın Tarihi
2026-04-02 17:16:21
Güncelleme
2026-04-03 16:10:23
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-203 MEDIUM 2026

Referanslar

http://osticket.com https://csacyber.com/blog/osticket-timing-vulnerability-understanding-the-risk