Lucene search
+L

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-2248

Malware in sbrugna...

5CVSS6.1AI score0.01655EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-54359

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00295EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/22 4:50 p.m.4 views

CVE-2025-57770 ZITADEL user enumeration vulnerability in login UI

The open-source identity infrastructure software Zitadel allows administrators to disable the user self-registration. Versions 4.0.0 to 4.0.2, 3.0.0 to 3.3.6, and all versions prior to 2.71.15 are vulnerable to a username enumeration issue in the login interface. The login UI includes a security...

5.3CVSS6.7AI score0.0035EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/06/27 5:20 p.m.10 views

CVE-2025-52576

Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.46, Kanboard is vulnerable to username enumeration and IP spoofing-based brute-force protection bypass. By analyzing login behavior and abusing trusted HTTP headers, an attacker can determine vali...

5.3CVSS7.2AI score0.00299EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:57 a.m.9 views

CVE-2024-33856

An issue was discovered in Logpoint before 7.4.0. An attacker can enumerate a valid list of usernames by observing the response time at the Forgot Password endpoint...

5.3CVSS6.9AI score0.0038EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:2 a.m.6 views

CVE-2024-30176

In Logpoint before 7.4.0, an attacker can enumerate a valid list of usernames by using publicly exposed URLs of shared widgets...

5.3CVSS6.9AI score0.0038EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:6 p.m.11 views

CVE-2020-35398

An issue was discovered in UTI Mutual fund Android application 5.4.18 and prior, allows attackers to brute force enumeration of usernames determined by the error message returned after invalid credentials are attempted...

5.3CVSS6.9AI score0.01117EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.9 views

PT-2024-20548

Name of the Vulnerable Software and Affected Versions vantage6 affected versions not specified Description The issue allows attackers to determine which usernames exist in vantage6 by calling the API routes "/recover/lost" and "/2fa/lost", which send emails to users if they have lost their passwo...

5.3CVSS4.8AI score0.00394EPSS
Exploits0References19
Positive Technologies
Positive Technologies
added 2023/04/24 12:0 a.m.13 views

PT-2023-22703 · Unknown · Medicine Tracker System

Name of the Vulnerable Software and Affected Versions: Medicine Tracker System version 1.0 Description: A username enumeration issue was discovered in the login functionality, allowing a malicious user to guess a valid username due to a different response time from invalid usernames. When a valid...

5.3CVSS5.2AI score0.00836EPSS
Exploits1References5
OSV
OSV
added 2018/11/14 1:16 p.m.11 views

SUSE-SU-2018:3768-1 Security update for openssh-openssl1

This update for openssh-openssl1 fixes the following issues: Security issues fixed: - CVE-2018-15919: Remotely observable behaviour in auth-gss2.c in OpenSSH could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. OpenSSH developers do not want to...

5.9CVSS5.7AI score0.98631EPSS
Exploits23References6
Rows per page
Query Builder