This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.This issue affects CDeX application versions through...
6.9AI Score
0.0004EPSS
Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites via a specially crafted URL.This issue affects CDeX application versions through...
6.8AI Score
0.0004EPSS
Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through...
6.9AI Score
0.0004EPSS
Buffer overflow in CDex 1.70b2 allows remote attackers to execute arbitrary code via a crafted Info header in an Ogg Vorbis (.ogg)...
8AI Score
0.185EPSS