2 matches found
Nextcloud: Mail app - blind SSRF via imapHost parameter
A blind SSRF vulnerability was discovered in the Nextcloud Mail application. An attacker could exploit this vulnerability to retrieve services running locally on the server and scan the internal network for information about which IPs are responding and which services are running on each IP...
Uber: Email Enumeration Vulnerability
Hello, I identified from one of your disclosed reports : the report 143291 that you added "security measures to help mitigate email enumeration" . However , I found a way to identify valid emails registered on Uber.com . I used the SIGN UP form to find if an email is valid or not. Proof of concep...