0.001 Low
EPSS
Percentile
45.5%
Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to arbitrarily reset passwords via a crafted HTTP request.
tooljet.com
github.com/fourcube/security-advisories/blob/main/security-advisories/20220320-tooljet.md