Weaknesses of type CWE-204
159 resultsCVE-2026-23511MEDIUMZITADEL has a user enumeration vulnerability in Login UIsEPSS 0.4%CVE-2025-2910MEDIUMUser enumeration vulnerability in MeetMe productsEPSS 0.4%CVE-2023-33859MEDIUMIBM Security ReaQta information disclosureEPSS 0.4%CVE-2024-35114MEDIUMIBM Control Center information disclosureEPSS 0.4%CVE-2025-0693MEDIUMIssue with AWS Sign-in IAM User Login Flow - Possible Username EnumerationEPSS 0.4%CVE-2025-69413MEDIUMIn Gitea before 1.25.2, /api/v1/user has different responses for failed authentication depending on whether a username exists.EPSS 0.4%CVE-2024-36996MEDIUMInformation Disclosure of user namesEPSS 0.4%CVE-2025-24342MEDIUMA vulnerability in the login functionality of the web application of ctrlX OS allows a remote unauthenticated attacker to guess valid usernaEPSS 0.4%CVE-2024-38431MEDIUMMatrix Tafnit v8 - CWE-204: Observable Response DiscrepancyEPSS 0.4%CVE-2026-25509MEDIUMCI4MS Vulnerable to User Email Enumeration via Password Reset FlowEPSS 0.3%CVE-2026-27480MEDIUMStatic Web Server: Timing-Based Username Enumeration in Basic AuthenticationEPSS 0.3%CVE-2025-49187MEDIUMUser enumerationEPSS 0.3%CVE-2025-27451MEDIUMCVE-2025-27451EPSS 0.3%CVE-2026-40485MEDIUMChurchCRM: Username Enumeration via Differential Response in Public Login APIEPSS 0.3%CVE-2025-58586MEDIUMUser Enumeration by excessive error outputEPSS 0.3%CVE-2025-61789MEDIUMIcinga DB Web hidden/protected custom variables are prone to filter enumerationEPSS 0.3%CVE-2024-42343MEDIUMLoway - CWE-204: Observable Response DiscrepancyEPSS 0.3%CVE-2026-25138MEDIUMRucio WebUI has Username Enumeration via Login Error MessageEPSS 0.3%CVE-2025-23193MEDIUMInformation Disclosure vulnerability in SAP NetWeaver Application Server ABAPEPSS 0.3%CVE-2026-33323MEDIUMParse Server: Email verification resend page leaks user existenceEPSS 0.3%