CVE-2022-3540
CVE-2022-3540 affects hunter2 prior to version 2.1.0. The issue is improper handling of auto-completion input, enabling an authenticated attacker to extract other users’ email addresses. Connected sources consistently describe the same vulnerability and version floor; no exploitation details are ...