CVE-2006-2676

2006-05-3110:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.4%

JSON

Dispatch.cgi/_user/uservCard/ in SiteScape Forum 7.2 and possibly earlier generates different responses in a way that allows remote attackers to enumerate valid usernames.

References

secunia.com/advisories/20266

www.uniras.gov.uk/niscc/docs/br-20060525-00374.html?lang=en

exchange.xforce.ibmcloud.com/vulnerabilities/26672