5 matches found
EUVD-2007-2760
Malware in sbrugna...
Stormshield Network Security Security Vulnerabilities
Stormshield Network Security is a next-generation UTM Unified Threat Management firewall from the French company Stormshield. A security vulnerability exists in Stormshield Network Security that originates from a remote access command that can be used to learn if a specific user account exists on...
CVE-2022-46382
Summary: CVE-2022-46382 affects RackN Digital Rebar up to version 4.10.8, where authentication tokens issued after login could still authorize actions even if the user account no longer exists. The root cause is insecure token validation during the lifecycle of a user account, enabling deleted us...
Nextcloud: Username Enumeration
Hi, it is possible to determine the existence of a user account. It reveals username which can open new attack vectors. Version: Nextcloud 16.0.3 Request for existing account: GET /avatar/admin/80?v=-472 HTTP/1.1 Host: localhost:8084 User-Agent: Mozilla/5.0 Macintosh; Intel Mac OS X 10.14; rv:68....
CVE-2001-1483
One-Time Passwords In Everything a.k.a OPIE 2.32 and 2.4 allows remote attackers to determine the existence of user accounts by printing random passphrases if the user account does not exist and static passphrases if the user account does exist...