The users/get program in the User RPC API in Apache Rave 0.11 up to and including 0.20 allows remote authenticated users to obtain sensitive information about all user accounts via the offset parameter, as demonstrated by discovering password hashes in the password field of a response.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache rave 0.19 |
||
apache rave 0.16 |
||
apache rave 0.18 |
||
apache rave 0.11 |
||
apache rave 0.20 |
||
apache rave 0.13 |
||
apache rave 0.17 |
||
apache rave 0.14 |
||
apache rave 0.12 |
||
apache rave 0.15 |