CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2000-1030

CS&T CorporateTime for the Web returns different error messages for invalid usernames and invalid passwords, which allows remote attackers to determine valid usernames on the server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.securityfocus.com/archive/1/142672
http://www.securityfocus.com/bid/1888
https://exchange.xforce.ibmcloud.com/vulnerabilities/5529
http://www.securityfocus.com/archive/1/142672
http://www.securityfocus.com/bid/1888
https://exchange.xforce.ibmcloud.com/vulnerabilities/5529

Products affected by CVE-2000-1030

Csandt » Corporatetime For The Web » Version: Any

cpe:2.3:a:csandt:corporatetime_for_the_web:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2000-1030

Products

Pricing

Contact Us