exploitDog

GHSA-jg89-564w-4gwr

Опубликовано: 03 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

Forgejo before 1.20.5-1 allows remote attackers to test for the existence of private user accounts by appending .rss (or another extension) to a URL.

Forgejo before 1.20.5-1 allows remote attackers to test for the existence of private user accounts by appending .rss (or another extension) to a URL.

Ссылки

EPSS

Процентиль: 64%

0.00471

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2023-49948

CVSS3: 5.3

nvd

около 2 лет назад

Forgejo before 1.20.5-1 allows remote attackers to test for the existence of private user accounts by appending .rss (or another extension) to a URL.

CVE-2023-49948

CVSS3: 5.3

debian

около 2 лет назад

Forgejo before 1.20.5-1 allows remote attackers to test for the existe ...

EPSS

Процентиль: 64%

0.00471

Низкий

5.3 Medium

CVSS3

CVE ID