CVE-2008-1166

CVE-2008-1166

EPSS 1.2%

Flyspray 0.9.9.4 generates different error messages depending on whether the username is valid or invalid, which allows remote attackers to enumerate usernames.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://secunia.com/advisories/29215 https://exchange.xforce.ibmcloud.com/vulnerabilities/40964 http://www.securityfocus.com/archive/1/489020/100/0/threaded