CVE-2021-31552

An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly executed certain rules related to blocking accounts after account creation. Such rules would allow for user accounts to be created while blocking only the IP address used to create an account and not...

CVE-2023-28412

When supplied with a random MAC address, Snap One OvrC cloud servers will return information about the device. The MAC address of devices can be enumerated in an attack and the OvrC cloud will disclose their information...

CVE-2024-22646

An email address enumeration vulnerability exists in the password reset function of SEO Panel version 4.10.0. This allows an attacker to guess which emails exist on the system...

CVE-2024-22646

The provided sources corroborate CVE-2024-22646 affecting SEO Panel version 4.10.0, describing an email address enumeration vulnerability in the password reset function that lets an attacker determine which emails exist on the system. The CVSS data in the NVD entry indicates a Network attack vect...

CVE-2023-27319

ONTAP Mediator versions prior to 1.7 are susceptible to a vulnerability that can allow an unauthenticated attacker to enumerate URLs via REST API...

CVE-2023-28412

When supplied with a random MAC address, Snap One OvrC cloud servers will return information about the device. The MAC address of devices can be enumerated in an attack and the OvrC cloud will disclose their information...

Information disclosure

When supplied with a random MAC address, Snap One OvrC cloud servers will return information about the device. The MAC address of devices can be enumerated in an attack and the OvrC cloud will disclose their information...

CVE-2023-28412

When supplied with a random MAC address, Snap One OvrC cloud servers will return information about the device. The MAC address of devices can be enumerated in an attack and the OvrC cloud will disclose their information...

PT-2023-21700 · Snap One · Snap One Ovrc

Name of the Vulnerable Software and Affected Versions: Snap One OvrC affected versions not specified Description: The issue allows an attacker to enumerate device MAC addresses and obtain information about the devices from the Snap One OvrC cloud servers. When a random MAC address is provided, th...

CVE-2020-28208

An email address enumeration vulnerability exists in the password reset function of Rocket.Chat through 3.9.1...

CVE-2020-28208

Rocket.Chat up to version 3.9.1 is affected by an information-disclosure vulnerability in the password-reset function that allows an attacker to enumerate registered email addresses. The root cause is information exposure via the reset workflow, enabling potential access to sensitive information....

Rocket.Chat Security Vulnerability

Rocket.Chat is an open source team chat software. A security vulnerability exists in Rocket.Chat 3.7.1, which can be exploited by an attacker to perform e-mail address enumeration...

Zomato: Possible to enumerate Addresses of users using AddressId and guessing the delivery_subzone

Description The title may seem a bit confusing but I will try to make it as simple as possible. Let us dive into it. When we login to zomato.com and click on Order Food, We are redirected to the endpoint like /mumbai/order-food-online?deliverysubzone=10159 where mumbai is the city and 10159 is th...

Information Disclosure

Merchello.Web is vulnerable to information disclosure. A remote attacker is able to obtain and enumerate all customers' address via the customer API query...

CVE-2024-50342: Internal address and port enumeration allowed by NoPrivateNetworkHttpClient

More info at https://symfony.com/cve-2024-50342...