CVE-2026-2543 | vichan-devel vichan up to 5.1.5 Password Change inc/mod/pages.php unverified password change

A vulnerability, which was classified as critical, has been found in vichan-devel vichan up to 5.1.5. This vulnerability affects unknown code of the file inc/mod/pages.php of the component Password Change Handler. The manipulation of the argument Password leads to unverified password change.

This vulnerability is documented as CVE-2026-2543. The attack can be initiated remotely. There is not any exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More