CVE-2018-1000549

Wekan version 1.04.0 contains a Email / Username Enumeration vulnerability in Register' and 'Forgot your password?' pages that can result in A remote attacker could perform a brute force attack to obtain valid usernames and email addresses.. This attack appear to be exploitable via HTTP Request.
Configurations

Configuration 1

cpe:2.3:a:wekan_project:wekan:1.04.0:*:*:*:*:*:*:*

Information

Published : 2018-06-26 04:29

Updated : 2020-08-03 07:15


NVD link : CVE-2018-1000549

Mitre link : CVE-2018-1000549

Products Affected
No products.
CWE