CVE-2026-26895 Blast Radius

MEDIUM • CVSS 5.3User enumeration vulnerability in /pwreset.php in osTicket v1.18.2 allows remote attackers to enumerate valid usernames registered in the platform.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-26895.

Start Free Scan →← Back to CVE-2026-26895