CVE-2023-26984 Information

Description

An issue in the password reset function of Peppermint v0.2.4 allows attackers to access the emails and passwords of the Tickets page via a crafted request.

Reference

https://github.com/Peppermint-Lab/peppermint/tree/master https://github.com/bypazs/CVE-2023-26984 https://peppermint.sh/