CVE-2026-30655

Published: Mar 24, 2026 Last Modified: Mar 24, 2026
ExploitDB:
Other exploit source:
Google Dorks:

Description

AI Translation Available

SQL injection in Solicitante::resetaSenha() in esiclivre/esiclivre v0.2.2 and earlier allows unauthenticated remote attackers to gain unauthorized access to sensitive information via the cpfcnpj parameter in /reset/index.php

https://github.com/brynax/CVE-2026-30655
https://github.com/brynax/CVE-2026-30655
https://github.com/esiclivre/esiclivre
https://github.com/esiclivre/esiclivre