← Back to CVE List
CVE-2022-27978
Published:
2023-04-26T16:15Z
Last Modified:
2025-02-03T19:15Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to arbitrarily reset passwords via a crafted HTTP request. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt