← back
CVE-2018-25350

userSpice 4.3.24 Username Enumeration via existingUsernameCheck.php

CVSS 9.3 CRITICALEPSS 0.4%CWE-204
userSpice 4.3.24 contains a username enumeration vulnerability that allows unauthenticated attackers to discover valid usernames by sending POST requests to the existingUsernameCheck.php endpoint. Attackers can submit usernames and analyze response text for the 'taken' string to identify existing accounts in the system.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
UserSpice · userSpice
public PoCs found1
cve_referencewww.exploit-db.com/exploits/44872unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.exploit-db.com/exploits/44872https://www.vulncheck.com/advisories/userspice-username-enumeration-via-existingusernamecheck-php