CVE-2026-23760
Vulnerability data via CVEDB (Shodan)
SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability in the password reset API. The force-reset-password endpoint permits anonymous requests and fails to verify the existing password or a reset token when resetting system administrator accounts. An unauthenticated attacker can supply a target administrator username and a new password to reset the account, resulting in full administrative compromise of the SmarterMail instance. NOTE: SmarterMail system administrator privileges grant the ability to execute operating system commands via built-in management functionality, effectively providing administrative (SYSTEM or root) access on the underlying host.
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
vuln:CVE-2026-23760product:"Smartertools Smartermail" version:"1.0.0"http.html:"Smartermail"More intel sources (5)
vuln:CVE-2026-23760vulnerabilities.cve_id: CVE-2026-23760CVE-2026-23760CVE-2026-23760"CVE-2026-23760" exploit -site:nvd.nist.gov