J0ey17/CVE-2025-46047

Releases0

Stars2

PoC for Silverpeas <= 6.4.2 Username Enumeration

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-46047 ↗	Sep 2, 2025Tuesday, 2 September 2025, 14:15	6.5 MEDIUM	—
A User enumeration vulnerability in the /CredentialsServlet/ForgotPassword endpoint in Silverpeas 6.4.1 and 6.4.2 allows remote attackers to determine valid usernames via the Login parameter.