CVE-2024-48533 Information

Description

A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login? module of eSoft Planner 3.24.08271-USA allows attackers to enumerate valid user e-mail accounts.

Reference

https://github.com/esoft-planner-cve/esoft_planner_cve