NetEpi Case Manager prior to 0.98 generates different error messages depending on whether or not a username is valid, which allows remote malicious users to enumerate valid usernames.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
netepi case manager netepi case manager 0.97 |
||
netepi case manager netepi case manager 0.93 |
||
netepi case manager netepi case manager 0.94 |
||
netepi case manager netepi case manager 0.95 |
||
netepi case manager netepi case manager 0.96 |
Vulmon