CVE-2022-32425

The login function of Mealie v1.0.0beta-2 allows attackers to enumerate existing usernames by timing the server's response time.
References
Link Resource
https://github.com/hay-kot/mealie/issues/1336 Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:mealie:mealie:1.0.0:beta2:*:*:*:*:*:*

Information

Published : 2022-07-14 10:15

Updated : 2022-07-20 05:04


NVD link : CVE-2022-32425

Mitre link : CVE-2022-32425

Products Affected
No products.
CWE