Vulnerability Details CVE-2006-2676
Dispatch.cgi/_user/uservCard/ in SiteScape Forum 7.2 and possibly earlier generates different responses in a way that allows remote attackers to enumerate valid usernames.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/20266
- http://www.uniras.gov.uk/niscc/docs/br-20060525-00374.html?lang=en
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26672
- http://secunia.com/advisories/20266
- http://www.uniras.gov.uk/niscc/docs/br-20060525-00374.html?lang=en
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26672
Products affected by CVE-2006-2676
-
cpe:2.3:a:sitescape:sitescape_forum:7.2