7 matches found
EUVD-2022-46985
Malicious code in bioql PyPI...
CVE-2025-24391
A vulnerability in the External Interface of OTRS allows conclusions to be drawn about the existence of user accounts through different HTTP response codes and messages. This enables an attacker to systematically identify valid email addresses. This issue affects: OTRS 7.0.X OTRS 8.0.X OTRS 2023....
CVE-2022-44022
PwnDoc through 0.5.3 might allow remote attackers to identify valid user account names by leveraging response timings for authentication attempts...
CVE-2025-46747
An authenticated user without user-management permissions could identify other user accounts...
CVE-2022-44023
PwnDoc through 0.5.3 might allow remote attackers to identify disabled user account names by leveraging response messages for authentication attempts...
CVE-2022-44022
PwnDoc through 0.5.3 might allow remote attackers to identify valid user account names by leveraging response timings for authentication attempts...
CVE-1999-1231
CVE-1999-1231 affects SSH 2.0.12 (and possibly later versions). The vulnerability arises because an attacker can try multiple password attempts using valid usernames, yet the system only prompts “invalid user” once, enabling remote disclosure of valid account names on the server. The description ...