Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In SapphireIMS 4097_1, it is possible to guess the registered/active usernames of the software from the errors it gives out for each type of user on the Login form. For "Incorrect User" - it gives an error "The application failed to identify the user. Please contact administrator for help." For "Correct User and Incorrect Password" - it gives an error "Authentication failed. Please login again."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tecknodreams SapphireIMS 安全漏洞
Vulnerability Description
Tecknodreams SapphireIMS是印度Tecknodreams公司的ITIL 2011 认证的企业级服务管理系统。 Tecknodreams SapphireIMS 4097_1 中存在安全漏洞,攻击者可利用该漏洞进行用户名枚举。
CVSS Information
N/A
Vulnerability Type
N/A