Skip to content

Instantly share code, notes, and snippets.

@rvismit
Last active April 5, 2022 21:07
Embed
What would you like to do?
CVE-2022-26643
Product : EasyIO
CVE : CVE-2022-26643
Version : CPT Graphics - 0.8
Vulnerability : Username enumeration on EasyIO CPT Graphics
Vulnerability Description : A misconfiguration in EasyIO CPT Graphics v0.8 allows attackers to discover valid users in the application.
#Steps to Reproduce
1). Visit the URL.
2). Give "xzy" as username "Error: can not find user xyz"
3). Now try "admin" "Valid user No Error".
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment