exploitDog

GHSA-5pwf-rq3f-8vg9

Опубликовано: 20 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login? module of eSoft Planner 3.24.08271-USA allows attackers to enumerate valid user e-mail accounts.

A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login? module of eSoft Planner 3.24.08271-USA allows attackers to enumerate valid user e-mail accounts.

Ссылки

EPSS

Процентиль: 29%

0.00105

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-276

Связанные уязвимости

CVE-2024-48533

CVSS3: 5.3

nvd

около 1 года назад

A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login? module of eSoft Planner 3.24.08271-USA allows attackers to enumerate valid user e-mail accounts.

EPSS

Процентиль: 29%

0.00105

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-276