FormaLMS User Enumeration Vulnerability in Password Recovery Functionality

Vulnerability

A user enumeration vulnerability has been identified in FormaLMS versions 4.1.18 and below. This vulnerability resides in the password recovery feature accessible through the '/lostpwd' endpoint. The application differentiates between valid and invalid usernames by returning distinct error messages. For instance, non-existent usernames trigger a message stating, 'The username you've inserted doesn't exist. Please check and retry.' This discrepancy allows an unauthenticated attacker to ascertain which usernames are registered in the system. Such information could be exploited for targeted brute-force or credential stuffing attacks.

Impact

Exploitation of this vulnerability allows for user enumeration, enabling attackers to identify registered usernames. This information could be used to conduct targeted brute-force or credential stuffing attacks.

Added: Feb 19, 2026, 10:19 PM

Updated: Feb 19, 2026, 10:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

0.6

exploitability

7.3

remediation

0.0

relevance

3.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

0.6

exploitability

7.3

remediation

0.0

relevance

3.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

FormaLMS User Enumeration Vulnerability in Password Recovery Functionality

Vulnerability

Impact

Affected Products

FormaLMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating