An issue in Daylight Studio FuelCMS v1.5.2 allows attackers to exfiltrate users' password reset tokens via a mail splitting attack.
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
Updated severity to CRITICAL and marked the vulnerability as actively exploited.
Updated vendor and product information, changed severity to CRITICAL, and noted that the vulnerability is actively exploited.
Initial creation
