Описание
kodbox 1.46.01 has a security flaw that enables user enumeration. This problem is present on the login page, where an attacker can identify valid users based on varying response messages, potentially paving the way for a brute force attack.
Ссылки
- Broken Link
- Exploit
- Broken Link
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:kodcloud:kodbox:1.46.01:*:*:*:*:*:*:*
EPSS
Процентиль: 55%
0.00329
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-307
Связанные уязвимости
CVSS3: 9.8
github
около 2 лет назад
kodbox 1.46.01 has a security flaw that enables user enumeration. This problem is present on the login page, where an attacker can identify valid users based on varying response messages, potentially paving the way for a brute force attack.
EPSS
Процентиль: 55%
0.00329
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-307