Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Priority - Priority User Enumeration
Vulnerability Description
An attacker can access to "Forgot my password" button, as soon as he puts users is valid in the system, the system would issue a message that a password reset email had been sent to user. This way you can verify which users are in the system and which are not.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
N/A
Vulnerability Title
Priority Software Priority 授权问题漏洞
Vulnerability Description
Priority Software Priority是以色列Priority Software公司的一种 ERP 解决方案。 Priority Software Priority 存在安全漏洞。攻击者利用该漏洞可以验证哪些用户在系统中,哪些不在系统中。
CVSS Information
N/A
Vulnerability Type
N/A