Volerion logoVolerion
Volerion logoVolerion

Mautic User Enumeration Vulnerability in Password Reset Functionality

Vulnerability

A user enumeration vulnerability has been identified in Mautic's password reset feature. This issue allows unauthenticated users to determine valid usernames by exploiting timing differences in response rates for existing versus non-existing users. The vulnerability arises from a lack of request limiting, enabling a timing-based attack to confirm username validity.

Impact

Exploitation of this vulnerability allows for user enumeration, where an attacker can identify valid usernames within the application.

Remediation

Users are advised to update to Mautic versions 6.0.2, 5.2.6, or 4.4.16, all of which address this vulnerability by normalizing password reset response times to ensure they are consistent, regardless of whether a username exists.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
5.2
impact
2.5
exploitability
8.3
remediation
7.7
relevance
0.0
threat
0.0
urgency
2.9
incentive
10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.