Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Mojolicious versions from 4.59 before 9.48 for Perl expose a stable representation of the session CSRF token to a BREACH compression oracle
Information Disclosure vulnerability in SAP HANA Extended Application Services classic model (User Self Service)
Rejetto HFS < 3.2.1 Username Enumeration via Login Response Differences
SFTP REALPATH path-existence oracle allowing filesystem enumeration outside configured root
User Enumeration in MCO
Ghost: Member existence leak via magic link sign-in response
Vantage6: Set admin user and password from environment or configuration
FOSSBilling's password reset confirmation endpoint lacks rate limiting
FreeScout: User Account Enumeration via Password Reset Response Differentiation
AVideo CVE-2026-43881 incomplete fix - `objects/mention.json.php:17` is an unauthenticated user enumeration
userSpice 4.3.24 Username Enumeration via existingUsernameCheck.php
Statamic: Email enumeration via forgot password endpoint
Username Enumeration via Email OTP Flow in Multiple WSO2 Products Allows User Account Discovery
Industrial Application Software IAS Canias ERP Login RMI doAction response discrepancy
Cisco Identity Services Engine Observable Response Discrepancy Vulnerability
OpenAEV Vulnerable to Username/Email Enumeration Through Differential HTTP Responses in Password Reset API
ChurchCRM: Username Enumeration via Differential Response in Public Login API
Information Disclosure vulnerability in SAP Human Capital Management for SAP S/4HANA
An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user cred...
Saleor has a user enumeration vulnerability due to different error messages
Showing 1 - 20 of 1,000+ results