Primary

Context

NocoDB User Enumeration Vulnerability via Password Reset Endpoint

Vulnerability

Patched

A user enumeration vulnerability has been identified in NocoDB versions prior to 0.301.3. The issue arises in the password reset endpoint, which responds differently for registered and unregistered email addresses. This discrepancy allows an attacker to determine the registration status of an email. The vulnerability has been patched in version 0.301.3.

Impact

Exploitation of this vulnerability allows an unauthenticated attacker to ascertain whether an email address is registered in the system, potentially aiding in further targeted attacks.

Reproduction

To reproduce this vulnerability, send a POST request to the password forgot endpoint with either a registered or unregistered email address. The response will indicate whether the email is registered, thereby allowing for user enumeration.

Remediation

Users can upgrade to NocoDB version 0.301.3 to address this vulnerability.

Added: Mar 2, 2026, 5:22 PM

Updated: Mar 2, 2026, 9:16 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

0.6

exploitability

8.5

remediation

7.7

relevance

3.4

threat

1.6

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

0.6

exploitability

8.5

remediation

7.7

relevance

3.4

threat

1.6

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NocoDB User Enumeration Vulnerability via Password Reset Endpoint

Vulnerability

Impact

Reproduction

Remediation

Affected Products

NocoDB

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating