An issue in Sourcebans++ before v.1.8.0 allows a remote attacker to obtain sensitive information via a crafted XAJAX call to the Forgot Password function.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/sbpp/sourcebans-pp/issues/975 |
History
Mon, 04 Nov 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Sourcebans-pp Project
Sourcebans-pp Project sourcebans-pp |
|
Weaknesses | CWE-203 | |
CPEs | cpe:2.3:a:sourcebans-pp_project:sourcebans-pp:*:*:*:*:*:*:*:* | |
Vendors & Products |
Sourcebans-pp Project
Sourcebans-pp Project sourcebans-pp |
|
Metrics |
cvssV3_1
|
Fri, 01 Nov 2024 15:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An issue in Sourcebans++ before v.1.8.0 allows a remote attacker to obtain sensitive information via a crafted XAJAX call to the Forgot Password function. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-11-01T00:00:00
Updated: 2024-11-04T20:50:03.489Z
Reserved: 2024-07-05T00:00:00
Link: CVE-2024-40490
Vulnrichment
Updated: 2024-11-04T20:49:58.084Z
NVD
Status : Awaiting Analysis
Published: 2024-11-01T16:15:08.793
Modified: 2024-11-04T21:35:05.530
Link: CVE-2024-40490
Redhat
No data.