exploitDog

CVE-2020-21493

Опубликовано: 04 окт. 2021

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

An issue in the component route\user.php of Xiuno BBS v4.0.4 allows attackers to enumerate usernames.

Ссылки

https://gitee.com/xiuno/xiunobbs/issues/I1690W
Issue Tracking
Third Party Advisory
https://github.com/wanghaiwei/xiuno-docker/issues/3
Exploit
Issue Tracking
Third Party Advisory
https://gitee.com/xiuno/xiunobbs/issues/I1690W
Issue Tracking
Third Party Advisory
https://github.com/wanghaiwei/xiuno-docker/issues/3
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:xiuno:xiunobbs:4.0.4:*:*:*:*:*:*:*

EPSS

Процентиль: 41%

0.00194

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-4hxw-v2j3-4qv8

github

больше 3 лет назад

An issue in the component route\user.php of Xiuno BBS v4.0.4 allows attackers to enumerate usernames.

EPSS

Процентиль: 41%

0.00194

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo