Last active
April 5, 2022 21:07
-
-
Save rvismit/3fd33b47a753e1b7065421f42b2dd496 to your computer and use it in GitHub Desktop.
CVE-2022-26643
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Product : EasyIO | |
CVE : CVE-2022-26643 | |
Version : CPT Graphics - 0.8 | |
Vulnerability : Username enumeration on EasyIO CPT Graphics | |
Vulnerability Description : A misconfiguration in EasyIO CPT Graphics v0.8 allows attackers to discover valid users in the application. | |
#Steps to Reproduce | |
1). Visit the URL. | |
2). Give "xzy" as username "Error: can not find user xyz" | |
3). Now try "admin" "Valid user No Error". |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment