CVE-2026-51926

docuForm GmbH · FSM Client

A vulnerability in the docuForm GmbH FSM Client v.11.11c login.php component allows remote attackers to perform user enumeration.

Executive summary

A user enumeration vulnerability in docuForm GmbH FSM Client v.11.11c allows unauthorized attackers to identify valid accounts, facilitating further targeted attacks.

Vulnerability

The application's authentication mechanism, specifically within the login.php component, is susceptible to user enumeration. By analyzing variations in server responses, an unauthenticated attacker can confirm the existence of specific usernames within the system.

Business impact

While this vulnerability has a CVSS score of 7.5, its primary impact is as a precursor to more severe attacks. By successfully enumerating valid usernames, attackers can significantly increase the efficiency of brute-force or credential-stuffing attacks, potentially leading to full account takeover and unauthorized access to sensitive information.

Remediation

Immediate Action: Reach out to the vendor, docuForm GmbH, for the latest security patches addressing authentication logic flaws.

Proactive Monitoring: Monitor authentication logs for high volumes of failed login attempts or repeated requests that target enumeration, which may indicate an ongoing reconnaissance effort.

Compensating Controls: Implement account lockout policies, rate limiting, and multi-factor authentication (MFA) to mitigate the risk of automated credential attacks facilitated by this enumeration flaw.

Exploitation status

Public Exploit Available: No confirmed public exploit is currently available.

Analyst recommendation

Although this vulnerability does not grant direct access, it provides attackers with the intelligence necessary to mount more damaging campaigns. Organizations should prioritize the application of any vendor-supplied patches and enhance their authentication security posture immediately.