5.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.2%
A cross-site request forgery (CSRF) vulnerability in Indexhibit 2.1.5 allows attackers to arbitrarily reset account passwords.
github.com/Indexhibit/indexhibit/issues/19