[MEDIUM] Pixelfed allows user enumeration via reset password functionality

PKSA-gdgg-v7n6-gzsx CVE-2023-0901 GHSA-vjxx-jgcx-9fq2

Affected package: pixelfed/pixelfed

Affected version: <=0.11.4

Reported by:
GitHub